dissent accountable anonymous communication
play

DISSENT: Accountable, Anonymous Communication Joan Feigenbaum - PowerPoint PPT Presentation

Jan 01, 2023 •202 likes •802 views

DISSENT: Accountable, Anonymous Communication Joan Feigenbaum http://www.cs.yale.edu/homes/jf/ Joint work with Bryan Ford (PI), Henry Corrigan Gibbs, Ramakrishna Gummadi, Aaron

  1. DISSENT: �� Accountable, � Anonymous � Communication Joan � Feigenbaum http://www.cs.yale.edu/homes/jf/ Joint � work � with � Bryan � Ford � (PI), �� Henry � Corrigan � Gibbs, � Ramakrishna � Gummadi, � Aaron � Johnson � (NRL), Vitaly Shmatikov � (UT � Austin), � Ewa Syta, � and � David � Wolinksy Supported � by � DARPA 1

  2. Problem � Statement •‣ A � group � of � N �� 2 � parties � wish � to � communicate � anonymously, � either � with � each � other � or � with � someone � outside � of � the � group. �� •‣ They � have � persistent, � “”real � world”„ identities � and � are � known, � by � themselves � and � the � recipients � of � their � communications, � to � be � a � group. •‣ They � want � a � protocol � with � four � properties: � Integrity � Anonymity � Accountability o Efficiency 2

  3. Accountability •‣ Group � member � i exposes group � member � j if � i obtains � proof, � verifiable � by � a � third � party � (not � necessarily � in � the � group), � that � j disrupted a � protocol � run. •‣ The � protocol � maintains � accountability if � no � honest � member � is � ever � exposed, � and, � after � every � run, � either: every � honest � member � successfully � receives �� every ��� o honest � member’‚s � message, � or every � honest � member � exposes � at � least � one ����� o disruptive � member. 3

  4. Need � for � Anonymity ��� (1) •‣ Communication � in � hostile � environments From � the � BAA: � “”The � goal � of � the � program � is � to � develop � technology � that � will � enable � safe, � resilient � communications � over � the � Internet, � particularly � in � situations � in � which � a � third � party � is � attempting � to � discover � the � identity � or � location � of � the � end � users � or � block � the � communication.”„ 4

  5. Need � for � Anonymity ���� (2) •‣ Cash � transactions •‣ Twelve � step � programs � (pseudonymy) •‣ Law � enforcement � “”tip”„ hotlines •‣ Websites � about � sensitive � topics, � e.g., � sexuality, � politics, � religion, � or � disease •‣ Voting •‣ . � . � . 5

  6. Need ¡for ¡Accountability ¡ • Authorita:ve, ¡creden:aled ¡group, ¡e.g.: ¡ o ¡Board ¡of ¡Directors ¡of ¡an ¡organiza:on ¡ o ¡Federa:on ¡of ¡journalists ¡(… ¡think ¡Wikileaks) ¡ o ¡Registered ¡voters ¡ • Internal ¡disagreement ¡is ¡inevitable. ¡ • Infiltra:on ¡by ¡the ¡enemy ¡may ¡be ¡feasible. ¡ ¡ Ø Disrup:on ¡is ¡expected ¡and ¡must ¡be ¡combated. ¡ ¡ ¡ ? It’s ¡not ¡clear ¡that ¡ “ accountability ” ¡is ¡the ¡right ¡word ¡ to ¡use ¡here ¡(… ¡and ¡that’s ¡part ¡of ¡a ¡longer ¡story). ¡ ¡ 6 ¡

  7. Outline ¡ ¡ ¡ • Prior ¡work ¡on ¡anonymous ¡ communica:on ¡ ¡ • Basic ¡DISSENT ¡protocol ¡(ACM ¡CCS ¡2010) ¡ ¡ • ¡Results ¡to ¡date ¡ ¡ 7 ¡

  8. Outline ¡ ¡ ¡ • Prior ¡work ¡on ¡anonymous ¡ communica/on ¡ ¡ • Basic ¡DISSENT ¡protocol ¡(ACM ¡CCS ¡2010) ¡ ¡ • ¡Results ¡to ¡date ¡ ¡ ¡ 8 ¡

  9. Major � Themes � in � Prior � Work •‣ General � purpose � anonymous � communication � mechanisms o MIX � networks � and � Onion � Routing � (OR) o Dining � Cryptographers � networks � (DC � nets) •‣ Special � purpose � mechanisms, � e.g.: o Anonymous � voting o Anonymous � authentication, � e.g., � group � or � ring � signatures o E � cash 9

  10. Basic � Operation � of � Onion � Routing •‣ Client � picks � a � few � (e.g., � three) � anonymizing relays from � a � cloud � of � available � relays. •‣ He � then � builds � and � uses � an � onion of � cryptographic � tunnels � through � the � relays � to � his � communication � partner. Public Anonymous Anonymous Server Client Client Anonymizing Relays 10

  11. Basic � Operation � of � Onion � Routing •‣ Client � picks � a � few � (e.g., � three) � anonymizing relays from � a � cloud � of � available � relays. •‣ He � then � builds � and � uses � an � onion of � cryptographic � tunnels � through � the � relays � to � his � communication � partner. Public Anonymous Anonymous Server Client Client Anonymizing Relays 11

  12. Basic � Operation � of � Onion � Routing •‣ Client � picks � a � few � (e.g., � three) � anonymizing relays from � a � cloud � of � available � relays. •‣ He � then � builds � and � uses � an � onion of � cryptographic � tunnels � through � the � relays � to � his � communication � partner. Public Anonymous Anonymous Server Client Client Anonymizing Relays 12

  13. Basic � Operation � of � Onion � Routing •‣ Client � picks � a � few � (e.g., � three) � anonymizing relays from � a � cloud � of � available � relays. •‣ He � then � builds � and � uses � an � onion of � cryptographic � tunnels � through � the � relays � to � his � communication � partner. Public Anonymous Anonymous Server Client Client Anonymizing Relays 13

  14. Basic � Operation � of � Onion � Routing •‣ Client � picks � a � few � (e.g., � three) � anonymizing relays from � a � cloud � of � available � relays. •‣ He � then � builds � and � uses � an � onion of � cryptographic � tunnels � through � the � relays � to � his � communication � partner. Public Anonymous Anonymous Server Client Client Anonymizing Relays 14

  15. Properties � of � Onion � Routing •‣ Key � advantages: o Scalable � to � large � groups � of � clients � and � relays o Can � be � made � interactive � (e.g., � Tor) o Widely � deployed � (e.g., � Tor) •‣ Key � disadvantages: o Many � vulnerabilities � to � traffic � analysis o No � accountability: � Anonymous � disruptors � can � Spam � or � DoS � attack � relays � or � innocent � nodes � Compromise � other � users’‚ anonymity ������������������ [Borisov et � al. ’‚07] 15

  16. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 1: � “”Alice+Bob”„ sends � a � 1 � bit � secret � to � Charlie. Alice Charlie Bob 16

  17. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 1: � “”Alice+Bob”„ sends � a � 1 � bit � secret � to � Charlie. Alice Alice+Bob’‚s 1 Shared Charlie Random Bit Bob 17

  18. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 1: � “”Alice+Bob”„ sends � a � 1 � bit � secret � to � Charlie. Alice Alice’‚s Secret 0 Alice+Bob’‚s 1 Shared Charlie Random Bit Bob 18

  19. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 1: � “”Alice+Bob”„ sends � a � 1 � bit � secret � to � Charlie. Alice Alice’‚s Secret � 0 1 Alice+Bob’‚s 1 Shared Charlie Random Bit 1 Bob 19

  20. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 1: � “”Alice+Bob”„ sends � a � 1 � bit � secret � to � Charlie. Alice Alice’‚s Secret � 0 1 Alice+Bob’‚s 1 Shared � Charlie Random Bit 1 Bob 20

  21. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 2: � Homogeneous � 3 � member � anonymity � group Alice Charlie Bob 21

  22. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 2: � Homogeneous � 3 � member � anonymity � group Alice Alice+Charlie's 0 Random Bit Alice+Bob's 1 Charlie Random Bit Bob+Charlie's 1 Bob Random Bit 22

  23. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 2: � Homogeneous � 3 � member � anonymity � group Alice Alice+Charlie's Alice’‚s 0 Random Bit Secret 1 Alice+Bob's 1 Charlie Random Bit Bob+Charlie's 1 Bob Random Bit 23

  24. Dining � Cryptographers � (DC � nets) •‣ Information � theoretic � group � anonymity •‣ Ex. � 2: � Homogeneous � 3 � member � anonymity � group Alice Alice+Charlie's Alice’‚s 0 Random Bit Secret � 1 0 Alice+Bob's 1 � 1 Charlie Random Bit 0 � Bob+Charlie's 1 Bob Random Bit 24

Recommend

Dissent: Accountable Anonymous Group Messaging Henry

Dissent: Accountable Anonymous Group Messaging Henry

Dissent: Accountable Anonymous Group Messaging Henry Corrigan-Gibbs and Bryan Ford Department of Computer Science Yale University 17 th ACM Conference on

879 views • 65 slides
Proac&vely Accountable Anonymous Messaging in Verdict Henry

Proac&vely Accountable Anonymous Messaging in Verdict Henry

Proac&vely Accountable Anonymous Messaging in Verdict Henry Corrigan-Gibbs, David Isaac Wolinsky, and Bryan Ford Department of Computer Science Yale

966 views • 85 slides
Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

PETS 2017 The 17th Privacy Enhancing T echnologies Symposium July 1821, 2017 Minneapolis, MN, USA Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur Rahaman 1 , Long Cheng 1 , Danfeng (Daphne)

650 views • 18 slides
Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Motivation Anonymous Communication NISAN Torsk Conclusion Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt theri@mailbox.tu-berlin.de Seminar Computer Security Technische Universitt Berlin 28 July 2011

390 views • 17 slides
Anonymous Communication and Internet Freedom CS 161: Computer Security Prof. David Wagner May 2,

Anonymous Communication and Internet Freedom CS 161: Computer Security Prof. David Wagner May 2,

Anonymous Communication and Internet Freedom CS 161: Computer Security Prof. David Wagner May 2, 2013 oday Goals For T State-sponsored adversaries Anonymous communication Internet censorship State-Sponsored Adversaries Anonymous

974 views • 58 slides
Do dummies pay off? Limits of dummy traffic protection in anonymous communication systems Simon

Do dummies pay off? Limits of dummy traffic protection in anonymous communication systems Simon

Do dummies pay off? Limits of dummy traffic protection in anonymous communication systems Simon Oya , Carmela Troncoso and Fernando Prez-Gonzlez Introduction Anonymous channels hide correspondences (input/output). Dummies are a common

402 views • 18 slides
K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang 515030910412 ABSTRACT The rapid development of social communication network has increased the risk in privacy protection, the association between people has

385 views • 4 slides
Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ April 12, CFP 2005 Talk Outline Motivation: Why anonymous communication? Myth 1: This is only for privacy

488 views • 33 slides
PET PhD Course 2012 SWITS The Smart Grid and Anonymous Communication Mechanisms Leonardo

PET PhD Course 2012 SWITS The Smart Grid and Anonymous Communication Mechanisms Leonardo

PET PhD Course 2012 SWITS The Smart Grid and Anonymous Communication Mechanisms Leonardo Martucci Security and Networks Group, ADIT Department of Computer and Information Science About me EE Degree (95-00) + Master in EE (00-02)

625 views • 33 slides
Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven

Tor: Anonymous Communications for the Dept of Defense...and you. Roger Dingledine Free Haven Project Electronic Frontier Foundation http://tor.eff.org/ 17 September 2005 Talk Outline Motivation: Why anonymous communication? Myth 1:

703 views • 47 slides
Anonymous Communication Martijn Terpstra & Max Tijssen Introduction 1. Definition of

Anonymous Communication Martijn Terpstra & Max Tijssen Introduction 1. Definition of

Anonymous Communication Martijn Terpstra & Max Tijssen Introduction 1. Definition of anonymity 2. Reasons 3. Problems 4. Legal issues and implications 5. PETs 6. Crowds 7. I2P Definition of anonymity The state or quality

607 views • 36 slides
How to Bootstrap Anonymous Communication Sune K. Jakobsen 1 Claudio Orlandi 2 1 Queen Mary,

How to Bootstrap Anonymous Communication Sune K. Jakobsen 1 Claudio Orlandi 2 1 Queen Mary,

How to Bootstrap Anonymous Communication Sune K. Jakobsen 1 Claudio Orlandi 2 1 Queen Mary, University of London 2 Aarhus University January 16, 2016 How can you get anonymity? Contact a journalist or publisher, and tell them you want to be

561 views • 34 slides
Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work with Ben Kreuter, Tancrde Lepoint, Mariana Raykova ia.cr/2020/072 1 Definition Anonymous tokens are lightweight, single-use anonymous credentials.

657 views • 61 slides
Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course

Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course

Anonymous Communication: DC-nets, Crowds, Onion Routing Simone Fischer-Hbner PETs PhD course Spring 2012 DC (Dining Cryptographers) nets [Chaum 1988 ] Chaum, CACM 28 (10), October 1985 Who paid for the Dinner (anonymously)? (I) n Equal

857 views • 37 slides
Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus

Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus

Consensus and Dissent or: Meta - Consensus Consensus about what we have consensus on Building on Bitcoin Lisboa, Portugal -- 4 July 2018 Paul Sztorc Twitter: @truthcoin paul@tierion.com 16C8 1597 E76E 86E6 C01E F037 AA4B 3330

619 views • 37 slides
Accountable Care Systems Andrew Bland SPG, 26th January 2018 Development of Accountable

Accountable Care Systems Andrew Bland SPG, 26th January 2018 Development of Accountable

Accountable Care Systems Andrew Bland SPG, 26th January 2018 Development of Accountable (Integrated) Care What is meant by accountable care? Organisations in an area delivering better health and care outcomes by managing the total budget

256 views • 15 slides
"I Must Dissent." Why? he English judiciary has ticularly in a case where the highest

"I Must Dissent." Why? he English judiciary has ticularly in a case where the highest

APPELLATE PRACTICE by Sylvia H. Walbolt and Stephanie C. Zimmerman "I Must Dissent." Why? he English judiciary has ticularly in a case where the highest senting opinion. Judge Wilson of a tradition of seriatim opin- court in the

446 views • 5 slides
Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Two cool ideas: Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons and/or menu items in your VectorGraphics project Three approaches for responding to the events from selecting those buttons /

406 views • 6 slides
SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

U U U U U U U- U - - communication - - - - - communication communication communication communication communication communication communication Korea Mobile Market Trend for Convergence & Ubiquitous Communication 2004.

400 views • 16 slides
12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship

12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship

12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship of men and women who share their experience, strength and hope with each other that they may solve their common problem and help others to recover

1.11k views • 76 slides
The Zcash Anonymous Cryptocurrency or zk-SNARKs for the interested layperson Sven M. Hallberg 29

The Zcash Anonymous Cryptocurrency or zk-SNARKs for the interested layperson Sven M. Hallberg 29

The Zcash Anonymous Cryptocurrency or zk-SNARKs for the interested layperson Sven M. Hallberg 29 Dec 2016 33rd Chaos Communication Congress, Hamburg What is Zcash Based on Bitcoin (altcoin) Adds a second type of address ( t XXXX, z

553 views • 26 slides
Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The

Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The

Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The CA Group Cocaine Anonymous Is The 12 Steps Cocaine Anonymous Is Not Spirituality History of Cocaine Anonymous Sponsorship

700 views • 37 slides
Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and Dan Boneh and Kenny Paterson USENIX Security Symposium Meet Alice the Anonymous Activist Blogger PK A anonymous 2 Alices Lack of Privacy Send

395 views • 21 slides
Task Computability in Unreliable Anonymous Networks Nayuta Yanagisawa DeNA Co., Ltd. Petr

Task Computability in Unreliable Anonymous Networks Nayuta Yanagisawa DeNA Co., Ltd. Petr

Task Computability in Unreliable Anonymous Networks Nayuta Yanagisawa DeNA Co., Ltd. Petr Kuznetsov Telecom ParisTech I am here to talk about ... the computability issues of failure-prone anonymous broadcast models. Anonymous Model

660 views • 21 slides

More recommend