andana onion routing for ndn
play

ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State - PowerPoint PPT Presentation

Oct 23, 2023 •292 likes •820 views

ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State University ANDaNA: Anonymous Named Data Networking Application NDSS 12 Steven DiBenedetto, Paolo Gasti, Gene Tsudik, Ersin Uzun Information Linkage & Leakage I:

  1. ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State University ANDaNA: Anonymous Named Data Networking Application NDSS ’12 Steven DiBenedetto, Paolo Gasti, Gene Tsudik, Ersin Uzun

  2. Information Linkage & Leakage I: /omh/blood-pressure/steve

  3. Information Linkage & Leakage I: /omh/blood-pressure/steve

  4. Information Linkage & Leakage I: /omh/blood-pressure/steve

  5. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve { mmHg: 100 }

  6. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve { mmHg: 100 }

  7. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve { mmHg: 100 }

  8. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve { mmHg: 100 }

  9. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve { mmHg: 100 }

  10. Information Linkage & Leakage I: /omh/blood-pressure/steve

  11. Information Linkage & Leakage I: /omh/blood-pressure/steve

  12. Information Linkage & Leakage I: /omh/blood-pressure/steve

  13. Information Linkage & Leakage I: /omh/blood-pressure/steve

  14. Information Linkage & Leakage I: /omh/blood-pressure/steve

  15. Information Linkage & Leakage I: /omh/blood-pressure/steve

  16. Information Linkage & Leakage

  17. Information Linkage & Leakage I: /omh/blood-pressure/steve Nonce: <rand-int> Lifetime: <int> Loc: /fitbit/key

  18. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key

  19. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key

  20. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key

  21. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key

  22. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key

  23. Information Linkage & Leakage I: /omh/blood-pressure/steve D: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key Lifetime: <int> { mmHg: 100 } Loc: /fitbit/key • Encrypted names, payloads, and header fields may link requester to sensitive content or leak information

  24. Onion Routing in NDN I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 23

  25. Onion Routing in NDN I: /OR-1 I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 24

  26. Onion Routing in NDN I: /OR-1 I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 25

  27. Onion Routing in NDN I: /OR-1 I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> /OR-1 Loc: /fitbit/key /OR-2 26

  28. Onion Routing in NDN I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 27

  29. Onion Routing in NDN I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 28

  30. Onion Routing in NDN I: /OR-2 I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 29

  31. Onion Routing in NDN I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 30

  32. Onion Routing in NDN I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 31

  33. Onion Routing in NDN I: /omh/blood-pressure/steve Nonce: <rand-int> Loc: /fitbit/key /OR-1 /OR-2 32

  34. Onion Routing in NDN D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 33

  35. Onion Routing in NDN D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 34

  36. Onion Routing in NDN D: /omh/blood-pressure/steve Loc: /fitbit/key /OR-1 { mmHg: 100 } /OR-2 35

  37. Onion Routing in NDN D: /OR-2 D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 36

  38. Onion Routing in NDN D: /OR-2 D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 37

  39. Onion Routing in NDN D: /OR-2 D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 38

  40. Onion Routing in NDN D: /OR-1 /OR-1 D: /OR-2 D: /omh/blood-pressure/steve /OR-2 Loc: /fitbit/key { mmHg: 100 } 39

  41. Onion Routing in NDN D: /OR-1 D: /OR-2 D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 40

  42. Onion Routing in NDN D: /OR-1 D: /OR-2 D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } /OR-1 /OR-2 41

  43. Improvements Over Tor Need fewer relays than Tor (2 vs 3) • – Potentially 1 less Internet-wide RTT ANDaNA paths are HIGHLY ephemeral • – No path setup cost – Change keys and relays at will during a Data stream without interruption – Tor sets up much longer lived circuits in comparison (~ 10 minutes) Symmetric key session-based mode also available • – Can be freely intermixed with public key crypto mode for the same Data stream. NDN gives us a lot for free • – CS improves retransmission and chance for cache hit at exit node – OR prefixes can refer to multiple relays – OR directory more robust to attacks thanks to signed Data 42

  44. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key /OR-1 /OR-2 43

  45. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key /OR-1 /OR-2 44

  46. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key /OR-1 NDN-NP environments are not the general case: both are privacy/security aware /OR-2 45

  47. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key /OR-1 NDN-NP environments are not the general case: both are privacy/security aware /OR-2 46

  48. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key NDN-NP environments are not the general case: both are privacy/security aware /OR-2 47

  49. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key NDN-NP environments are not the general case: both are privacy/security aware /OR-2 48

  50. The Exit Node Problem D: /omh/blood-pressure/steve Loc: /fitbit/key { mmHg: 100 } I: /omh/blood-pressure/steve Exclude: <name-comp> Loc: /fitbit/key NDN-NP environments are not the general case: both are privacy/security aware /OR-2 49

  51. Summary • ANDaNA provides a Tor-like service for NDN, but new tradeoffs to consider • ANDaNA is fundamentally a proxy: use as many (or few) relays as needed 50

  52. Thoughts • What’s the threat model for NDN-NP? • Tradeoffs: – ANDaNA provides low latency anonymity – Mix networks could be used if NDN-NP can tolerate latency • Implementing confidentiality: – Confidentially must be left to applications. – Users don’t own the network, but can own overlays 51

Recommend

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti Dina Katabi &amp; Katya Puchala State of the art: Onio Onion Rout n Routing over P2P ing over P2P n Routing over P2P ing over P2P Bob Onion

705 views • 43 slides
iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 9 16ss 1 / 38 Outline Introduction Trust architecture Protocols Attacks

879 views • 47 slides
iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 9 18ss 1 / 36 Outline Introduction Trust architecture Protocols Attacks

663 views • 45 slides
Hiding Amongst the Clouds A Proposal for Cloud-based Onion Routing Nicholas Jones Matvey Arye

Hiding Amongst the Clouds A Proposal for Cloud-based Onion Routing Nicholas Jones Matvey Arye

Hiding Amongst the Clouds A Proposal for Cloud-based Onion Routing Nicholas Jones Matvey Arye Jacopo Cesareo Michael J. Freedman Princeton University https://www.torproject.org/about/overview.html We and but... and C loud-based O nion

822 views • 80 slides
Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course

Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course

Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course Spring 2012 DC (Dining Cryptographers) nets [Chaum 1988 ] Chaum, CACM 28 (10), October 1985 Who paid for the Dinner (anonymously)? (I) n Equal

857 views • 37 slides
Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea

Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea

Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea is to conceal sources and destinations By sending lots of crypo-protected packets between lots of places Each packet goes through multiple

366 views • 20 slides
guard sets for onion routing Jamie Hayes - joint work with George Danezis University College

guard sets for onion routing Jamie Hayes - joint work with George Danezis University College

guard sets for onion routing Jamie Hayes - joint work with George Danezis University College London j.hayes@cs.ucl.ac.uk why does tor exist? Encryption conceals the data - not the metadata. Tor attempts to hide this metadata by

682 views • 36 slides
Dropping on the Edge: Flexibility and Dropping on the Edge: Flexibility and Trac Conrmation

Dropping on the Edge: Flexibility and Dropping on the Edge: Flexibility and Trac Conrmation

7/25/2019 PoPET s18 Dropping on the Edge: Flexibility and Dropping on the Edge: Flexibility and Trac Conrmation in Onion Routing Trac Conrmation in Onion Routing Protocols Protocols Florentin Rochet and Olivier Pereira

573 views • 21 slides
The Onion Router (Tor): Onion Encryption Served Three Ways Martijn Stam COINS Winterschool in

The Onion Router (Tor): Onion Encryption Served Three Ways Martijn Stam COINS Winterschool in

The Onion Router (Tor): Onion Encryption Served Three Ways Martijn Stam COINS Winterschool in Finse, May 2019 2 Tor: The Second-Generation Onion Router Dingledine, Mathewson, Syverson (Usenix04) What is Tor Tor is a tool to advance

1.01k views • 88 slides
Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in

Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in

Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in a bath of distilled water. It is viewed at medium power (100x). Draw these cells in the first circle on your lab paper. Label the cell walls

391 views • 4 slides
Shear-induced onion formation of complex bilayer lamellar phase Nagaoka University of Technology

Shear-induced onion formation of complex bilayer lamellar phase Nagaoka University of Technology

Shear-induced onion formation of complex bilayer lamellar phase Nagaoka University of Technology S. Fujii Shear induced onion phase Cylinder L Onion Buckled L SDS / Dodecane / Pentanol / Water System O. Diat, D. Roux, F. Nallet,

697 views • 17 slides
4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has columns for the destination network (or hosts) with the corresponding cost and the next router address to reach a destination. Additional

1.08k views • 84 slides
Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing

Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing

Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing [Kleinberg04] J. Kleinberg, A. Slivkins, T. Wexler. Triangulation and Embedding using Small Sets of Beacons. Proc. 45th IEEE Symposium on Foundations of

450 views • 32 slides
Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing

Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing

Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing forwarding: to select an output port based on destination address and routing table routing: process by which routing table is built

543 views • 13 slides
1 Routing Table Routing Table Destination network Next router

1 Routing Table Routing Table Destination network Next router

Lecture 12. Lecture 12. Introduction to Introduction to IP Routing IP Routing Giuseppe Bianchi Why introduction? Why introduction? Routing: very complex issue need in-depth study entire books on routing our scope: give a

552 views • 19 slides
The First All Natural Onion Topping Made with 100% Real Onions Just the Facts Maam ONION

The First All Natural Onion Topping Made with 100% Real Onions Just the Facts Maam ONION

The First All Natural Onion Topping Made with 100% Real Onions Just the Facts Maam ONION CRUNCH. is the only ALL NATURAL crispy crunch topping in America. Made from 100% real onions they are peeled, washed, cut and battered. Then we use

390 views • 9 slides
Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local

Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local

Interplay between routing and forwarding routing algorithm Routing Algorithms and Routing local forwarding table header value output link in the Internet 0100 3 0101 2 0111 2 1001 1 value in arriving packets header 1 0111 2 3

403 views • 8 slides
Untagging Tor: A Formal Treatment of Onion Encryption Jean Paul Degabriele Martijn Stam 1

Untagging Tor: A Formal Treatment of Onion Encryption Jean Paul Degabriele Martijn Stam 1

Untagging Tor: A Formal Treatment of Onion Encryption Jean Paul Degabriele Martijn Stam 1 Outline of this talk Overview of Tor Tagging Attacks and Their Severity Modelling Onion Encryption Tor Proposal 261 and Security Analysis

731 views • 21 slides
Ad Hoc Wireless Routing CS 218- Fall 2003 Wireless multihop routing challenges Review of

Ad Hoc Wireless Routing CS 218- Fall 2003 Wireless multihop routing challenges Review of

Ad Hoc Wireless Routing CS 218- Fall 2003 Wireless multihop routing challenges Review of conventional routing schemes Proactive wireless routing Hierarchical routing Reactive (on demand) wireless routing Geographic routing

893 views • 60 slides
http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion

http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion

http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion http://expyuzz4wqqyqhjn.onion 3wcwjjnuvjyazeza.onion 3wcwjjnu vjyazeza 3wcwjjnuvjyazeza.onion 3wcwjjnu vjyazeza 3wcwjjnuvjyazeza.onion 3wcwjjnu

457 views • 34 slides
Routing Algebras What are routing algebras? Created to study properties of routing protocols

Routing Algebras What are routing algebras? Created to study properties of routing protocols

Routing Algebras What are routing algebras? Created to study properties of routing protocols Does the routing protocol converge? Does the routing protocol compute optimal paths? Separates the routing data &amp; algorithm Data

326 views • 11 slides
CS 557 ARPANet Routing Algorithms An Overview of the New Routing Algorithm for the ARPANET J.

CS 557 ARPANet Routing Algorithms An Overview of the New Routing Algorithm for the ARPANET J.

CS 557 ARPANet Routing Algorithms An Overview of the New Routing Algorithm for the ARPANET J. McQuillan, I. Richer, and E. Rosen, 1979 The Revised ARPANET Routing Metric Atul Khanna and John Zinky, 1989 Spring 2013 Routing Algorithm Basics

894 views • 29 slides
Requisition Routing In depth look into the structure of Requisition Routing Goals for this

Requisition Routing In depth look into the structure of Requisition Routing Goals for this

Requisition Routing In depth look into the structure of Requisition Routing Goals for this Presentation 1. Recreating manual routing and approval processes in QCC 2. Understanding the relationship between the various routing master files 3.

552 views • 33 slides
CS 557 Landmark Routing The Landmark Hierarchy: A New Hierarchy For Routing in Very Large

CS 557 Landmark Routing The Landmark Hierarchy: A New Hierarchy For Routing in Very Large

CS 557 Landmark Routing The Landmark Hierarchy: A New Hierarchy For Routing in Very Large Networks Paul Tsuchiya, 1988 Spring 2013 Landmark Routing Objective: Reduce the routing table size without increasing path length by a large

458 views • 15 slides

More recommend