atom
play

Atom Horizontally Scaling Strong Anonymity Albert Kwon - PowerPoint PPT Presentation

Oct 11, 2022 •685 likes •1.01k views

Atom Horizontally Scaling Strong Anonymity Albert Kwon Henry Corrigan-Gibbs MIT Stanford Srinivas Devadas Bryan Ford MIT EPFL 10/30/17,

  1. Atom Horizontally Scaling Strong Anonymity Albert Kwon Henry Corrigan-Gibbs MIT Stanford Srinivas Devadas Bryan Ford MIT EPFL 10/30/17, SOSP’17

  2. Anonymous bulletin board (broadcast) Motivation in the face of global adversary Protest at 4 p.m.! 2

  3. Anonymous communication networks Anonymity provider (set of servers) 3

  4. Existing systems vs. Atom Tor Riposte Properties Atom [USENIX Sec’04] [Oakland’15] Horizontal Vertical Horizontal Scaling Latency < 10s 11 hrs 28min (1 million users) Anonymity against Vulnerable Secure Secure global adversaries 4

  5. Deployment and threat model ● Global network adversary ● A large number of users are malicious ● Constant fraction of the servers are malicious ○ 20% 5

  6. Atom overview 6

  7. Atom overview Layer 1 Layer 2 Layer L Unknown random 1 2 4 permutation of all inputs 2 4 1 ... 4 1 2 3 3 1 3 4 3 2 7

  8. Fixed Horizontally scalability (Independent of the width) Depth ... Width More servers ... ... ... => Larger width 8

  9. Challenges 1. Guaranteeing anytrust property … 9

  10. Challenges 1. Guaranteeing anytrust property 2. Group mixing and routing protocol 2 1 1 2 2 1 2 1 2 1 10

  11. Challenges 1. Guaranteeing anytrust property 2. Group mixing and routing protocol 3. Active adversaries 0 1 0 2 0 0 11

  12. Active attacks 1 0 0 2 0 0 ... 0 0 1 0 3 1 0 4 0 1 12

  13. Challenges 1. Guaranteeing anytrust property 2. Group mixing and routing protocol 3. Active adversaries 4. Tolerating server churn 1 13

  14. Challenges 1. Guaranteeing anytrust property 2. Group mixing and routing protocol 3. Active adversaries 4. Tolerating server churn 1 14

  15. Generating anytrust groups k = 32 20% malicious Public randomness … Randomly select k servers Pr[group is fully malicious] = 0.2 k Pr[any group is fully malicious] < (# of groups) · 0.2 k < 2 -64 15

  16. Idea: use verifiable trap messages Handling actively malicious servers Trusted third party Trap messages & $ # @ (nonces) & $ ... # @ 16

  17. Send trap and real messages in a random order : encrypted for TTP Trusted third party & $ # @ & 1 2 $ ... # 3 @ 4 17

  18. TTP checks for the traps : encrypted for TTP Trusted third party & $ # @ ... $ 3 & 2 4 @ 1 # 18

  19. What happens when a trap message is dropped? : encrypted for TTP 0 Trusted third party & $ # @ 0 ... $ 3 & 2 4 @ 1 # 19

  20. What happens when a real message is dropped? : encrypted for TTP 0 Trusted third party & $ # @ 0 ... $ 3 & 2 4 @ 1 # 20

  21. Improving the trap messages ● Distributing the trust in the third party ● Distributing the trap verification and decryption 21

  22. Properties of trap-based defense ● If the adversary tampers with any trap, then no plaintext revealed ● Can remove 1 message with probability ½ Remove t messages with probability 2 - t ○ Realistically remove < ~64 msgs ○ ● Reactive 22

  23. Two modes of operation Trap messages Zero-knowledge Proof Idea Verify untamperable traps Verify protocol with ZKP Anonymity N - t N set size Defense type Reactive Proactive Latency 1x 4x 23

  24. Implementation ● ~4000 lines of Go ● Both trap and ZKP based defenses ● Code available at github.com/kwonalbert/atom 24

  25. Evaluation setup ● Heterogenous set of 1024 EC2 servers 80% of the servers were 4-core machines ○ Depth = 10 ● 20% malicious servers ● Trap messages ● 160-byte msgs 32 server group … … … … 25

  26. Latency is inversely proportional to the number of servers 23x Better 26

  27. Latency scales linearly with the number of users Better 27

  28. Limitations ● Medium to high latency ● Denial-of-service Depth = 10 … 32 server group 28

  29. Related work Strong anonymity but veritically scaling ● Dissent[OSDI’12], Riffle [PETS’16], Riposte [Oakland’15], ... ○ Horizontally scaling systems but weaker anonymity ● Crowds [ACM’99], Mixminion [Oakland’03], Tor [USENIX Sec’04], ○ Aqua [SIGCOMM’13], Loopix [USENIX Sec’17], … Distributed mixing ● Parallel mix-net [CCS’04], matrix shuffling [Håstad’06], ○ random switching networks [SODA’99, CRYPTO’15], ... Private point-to-point messaging ● Vuvuzela [SOSP’15], Pung [OSDI’16], Stadium [SOSP’17] ○ 29

  30. Conclusion ● Atom provides horizontally-scaling strong anonymity Global anonymity set ○ Latency is inversely proportional to the number of servers ○ ● Supports 1 million users with 160 byte msgs in 28min github.com/kwonalbert/atom 30

  31. These icons were acquired from thenounprojcet.com, and are under CC BY 3.0 US Created by H Alberto Gongora Created by Andre Luiz Gollo Created by H Alberto Gongora Created by Creative Stall Created by Anil 31

Recommend

ATOM Training Company Capability 2012 August 2012 Contents ! About ATOM ! ATOM Capabilities,

ATOM Training Company Capability 2012 August 2012 Contents ! About ATOM ! ATOM Capabilities,

ATOM Training Company Capability 2012 August 2012 Contents ! About ATOM ! ATOM Capabilities, Products and Services ! Broadmead Training Area ! ATOM USPs ! ATOM Contacts A US/UK Joint Venture UK Company ATOM A Well Established Pedigree

519 views • 34 slides
Atom as CTRL script editor Whats Atom? text editor, IDE easily hackable &amp;

Atom as CTRL script editor Whats Atom? text editor, IDE easily hackable &amp;

Atom as CTRL script editor Whats Atom? text editor, IDE easily hackable &amp; extendable relatively lightweight open source multi-platform (Linux, Windows, macOS) developed by GitHub Atom as IDE

328 views • 11 slides
Data objects/Atoms Some objects are only identified by their name, called an atom . Thus, it is

Data objects/Atoms Some objects are only identified by their name, called an atom . Thus, it is

Data objects/Atoms Some objects are only identified by their name, called an atom . Thus, it is correct to say that, in such a case, an object is an atom. For example, we saw the atom bob . An atom starts with a lower-case letter which can be

121 views • 9 slides
1 Electronegativity Which element has the highest value for The relative ability of an atom to

1 Electronegativity Which element has the highest value for The relative ability of an atom to

First Ionization Energy Periodic Trends of Atomic Properties requires E to strip e - from atom First Ionization Energy Always (+) value = e - attracted to p + E it takes to remove an e - from a gaseous atom producing a gaseous ion E + M

423 views • 4 slides
Atomized How to consume and publish Atom using Open-Source Java tools Ugo Cei Sourcesense

Atomized How to consume and publish Atom using Open-Source Java tools Ugo Cei Sourcesense

Atomized How to consume and publish Atom using Open-Source Java tools Ugo Cei Sourcesense u.cei@sourcesense.com What is Atom Atom is a syndication format RFC 4287 Atom is a publishing protocol draft-ietf-atompub-protocol-09.txt

560 views • 21 slides
Cold Atom Atom Clocks Clocks Cold Cold Atom Clocks and Fundamental Fundamental Tests Tests

Cold Atom Atom Clocks Clocks Cold Cold Atom Clocks and Fundamental Fundamental Tests Tests

Cold Atom Atom Clocks Clocks Cold Cold Atom Clocks and Fundamental Fundamental Tests Tests and and Fundamental Tests C. Salomon Laboratoire Kastler Brossel, Ecole Normale Suprieure, Paris

768 views • 38 slides
Atom Mapping in MetaCyc and Pathway Tools Mario Latendresse March 2013 Latendresse (SRI

Atom Mapping in MetaCyc and Pathway Tools Mario Latendresse March 2013 Latendresse (SRI

Atom Mapping in MetaCyc and Pathway Tools Mario Latendresse March 2013 Latendresse (SRI International) Atom Mapping March 2013 1 / 24 Outline Introduction 1 What is an Atom Mapping? Applications Availability of Atom Mappings 2 Atom

686 views • 24 slides
? e - e - How to test these hypotheses? Shoot bullets at the atom and watch their

? e - e - How to test these hypotheses? Shoot bullets at the atom and watch their

Physics 2D Lecture Slides Lecture 15: Feb 2nd 2005 Vivek Sharma UCSD Physics Where are the electrons inside the atom? Early Thought: Plum pudding model Atom has a homogenous distribution of Positive charge with electrons embedded

326 views • 14 slides
X X 2 He 3 Li 4 Be Lewis Dot Lewis Dot Atom number Atom symbol Ion Symbol (atom) (ion) X X 5

X X 2 He 3 Li 4 Be Lewis Dot Lewis Dot Atom number Atom symbol Ion Symbol (atom) (ion) X X 5

Bonding Notes Types of bonds we will see: 1. Ionic 2. Covalent 3. Metallic 4. Intermolecular 5. The outermost electrons are the _____________________ electrons 6. The outermost electron orbital is the ________________________

299 views • 18 slides
Practical Considerations in Atom Probe Tip Making Using FIB-SEM Nicholas Antoniou &amp; Andrew

Practical Considerations in Atom Probe Tip Making Using FIB-SEM Nicholas Antoniou &amp; Andrew

Practical Considerations in Atom Probe Tip Making Using FIB-SEM Nicholas Antoniou &amp; Andrew Magyar Center for Nanoscale Systems Harvard University Outline The 3D Atom Probe Microscope Operation of the 3D Atom Probe Sample

192 views • 16 slides
Chapter 10 Section 2 By: Mrs. Sergent What Is An Atom Made Of? An atom is made up of protons,

Chapter 10 Section 2 By: Mrs. Sergent What Is An Atom Made Of? An atom is made up of protons,

Chapter 10 Section 2 By: Mrs. Sergent What Is An Atom Made Of? An atom is made up of protons, neutrons, and electrons . Protons are positively charged particles in the nucleus. The SI unit used to express the masses of particles in atoms is the

549 views • 18 slides
Atom Modeling Using abstraction make tiny particles come to life Atom Modeling Project - Overview

Atom Modeling Using abstraction make tiny particles come to life Atom Modeling Project - Overview

Atom Modeling Using abstraction make tiny particles come to life Atom Modeling Project - Overview You are going to create atomic models today! In fact, you will create three different models: Digital, using a Build an Atom simulation On

368 views • 5 slides
AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 118 Table of Contents: The Atom (Pt.

AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 118 Table of Contents: The Atom (Pt.

Slide 1 / 118 Slide 2 / 118 AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 118 Table of Contents: The Atom (Pt. A) Click on the topic to go to that section Subatomic Particles Atomic Modeling Slide 4 / 118 Subatomic

1.04k views • 40 slides
Stable &amp; Accurate Single- - Stable &amp; Accurate Single atom Optical Clocks atom Optical

Stable &amp; Accurate Single- - Stable &amp; Accurate Single atom Optical Clocks atom Optical

Stable &amp; Accurate Single- - Stable &amp; Accurate Single atom Optical Clocks atom Optical Clocks Ti:Saph Fs-comb group: The Masters: Al+ Ion Group: Jason Stalnaker Wayne Itano Tara M. Fortier Till Rosenband Dave Wineland Kyoungsik

480 views • 35 slides
Atom interferometry applications in gravimetry and some thoughts on current sensitivity

Atom interferometry applications in gravimetry and some thoughts on current sensitivity

Prof. Achim Peters, Ph.D. Atom interferometry applications in gravimetry and some thoughts on current sensitivity limitations and concepts for future improvements International Workshop on Gravitational Waves Detection with Atom

984 views • 27 slides
Application of X-ray microcalorimeters to hadronic-atom spectroscopy TES microcarorimeters

Application of X-ray microcalorimeters to hadronic-atom spectroscopy TES microcarorimeters

Application of X-ray microcalorimeters to hadronic-atom spectroscopy TES microcarorimeters Kaonic atom X-rays Demonstration experiments at PSI &amp; J-PARC Summary Tadashi Hashimoto (RIKEN) for the HEATES (J-PARC E62)

517 views • 23 slides
Normal Forms 1 Literals Definition A literal is an atom or the negation of an atom. In the

Normal Forms 1 Literals Definition A literal is an atom or the negation of an atom. In the

Propositional Logic Normal Forms 1 Literals Definition A literal is an atom or the negation of an atom. In the former case the literal is positive, in the latter case it is negative. 2 Negation Normal Form (NNF) Definition A formula is in

256 views • 8 slides
A. Atom fundamental unit of matter 1. Subatomic particles: e - = electron n o = neutron p + =

A. Atom fundamental unit of matter 1. Subatomic particles: e - = electron n o = neutron p + =

I. Chemistry study of what substances are made of and how they change and combine A. Atom fundamental unit of matter 1. Subatomic particles: e - = electron n o = neutron p + = proton B. Element - each different kind of atom is a different

543 views • 35 slides
Trapped Atom-Light Interaction 2-level atom trapped in harmonic potential |e&gt; &quot; !

Trapped Atom-Light Interaction 2-level atom trapped in harmonic potential |e&gt; &quot; !

INTERACTING IONS: BLACKBOARD Trapped Atom-Light Interaction 2-level atom trapped in harmonic potential |e&gt; &quot; ! k ! |g&gt; H ext = ! a a + 1 H int = 1 2 ! z 2 Interaction with near

99 views • 8 slides
ATOM: Automated Tracking, Orchestration and Monitoring of Resource Usage in Infrastructure as a

ATOM: Automated Tracking, Orchestration and Monitoring of Resource Usage in Infrastructure as a

Motivation Design Evaluation Discussion ATOM: Automated Tracking, Orchestration and Monitoring of Resource Usage in Infrastructure as a Service Systems Min Du, Feifei Li School of Computing, University of Utah ATOM: Automated Tracking,

1.28k views • 98 slides
AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 113 Table of Contents: The Atom (Pt.

AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 113 Table of Contents: The Atom (Pt.

Slide 1 / 113 Slide 2 / 113 AP Chemistry The Atom 2015-08-25 www.njctl.org Slide 3 / 113 Table of Contents: The Atom (Pt. B) Click on the topic to go to that section Periodic Table Periodic Trends Slide 4 / 113 Periodic Table Return

645 views • 62 slides
# C Name Structural Diagram The simplest hydrocarbon has one carbon atom. 8 1 9 2 10 3

# C Name Structural Diagram The simplest hydrocarbon has one carbon atom. 8 1 9 2 10 3

Organic Chem Class notes name: _____________________________ 1. ________________________ is the first atom of organic chemistry. 2. Carbon can make

646 views • 26 slides
Ion Neutralization at Metal Surface vac When a ionized atom is projected onto a solid surface,

Ion Neutralization at Metal Surface vac When a ionized atom is projected onto a solid surface,

Ion Neutralization at Metal Surface vac When a ionized atom is projected onto a solid surface, an excited solid-atom system is formed. Conduction band ~ 4.5 eV The Ion-Neutralization process is a process by which the F excited solid-atom

331 views • 5 slides
Laguerre-Gaussian laser modes for atomic physics Atom channeling and information storage QTC

Laguerre-Gaussian laser modes for atomic physics Atom channeling and information storage QTC

Laguerre-Gaussian laser modes for atomic physics Atom channeling and information storage QTC 2015 Laurence PRUVOST Laboratoire Aim Cotton, CNRS, Univ. Paris-Sud, ENS Cachan Orsay, France Ph 740-12 Twisted light: Atom channeling and

680 views • 35 slides

More recommend