Oliver Berthold scite author profile

There are different methods to build an anonymity service using MIXes. A substantial decision for doing so is the method of choosing the MIX route. In this paper we compare two special configurations: a fixed MIX route used by all participants and a network of freely usable MIXes where each participant chooses his own route. The advantages and disadvantages in respect to the freedom of choice are presented and examined. We'll show that some additional attacks are possible in networks with freely chosen MIX routes. After describing these attacks, we estimate their impact on the achievable degree of anonymity. Finally, we evaluate the relevance of the described attacks with respect to existing systems like e.g. Mixmaster, Crowds, and Freedom.

show abstract

Project “anonymity and unobservability in the Internet”

Berthold

Federrath

Köhntopp

2000

View full text Add to dashboard Cite

Abstract. It is a hard problem to achieve anonymity for real-time services in the Internet (e.g. Web access). All existing concepts fail when we assume a very strong attacker model (i.e. an attacker is able to observe all communication links). We also show that these attacks are realworld attacks. This paper outlines alternative models which mostly render these attacks useless. Our present work tries to increase the efficiency of these measures. 1ÊÊThe perfect system 1.1ÊÊ AttacksThe perfect anonymous communication system has to prevent the following attacks:1. Message coding attack: If messages do not change their coding during transmission they can be linked or traced. 2. Timing attack: An opponent can observe the duration of a specific communication by linking its possible endpoints and waiting for a correlation between the creation and/or release event at each possible endpoint. 3. Message volume attack: The amount of transmitted data (i.e. the message length) can be observed. Thus, a global observer is able to associate a communication relation to a certain client and server. 4. Flooding attack: Each message can only be anonymous in a group of sent messages. All senders of those messages form the anonymity group. Under normal circumstances, each sender should send one message per time interval. However, some of the existing concepts enable an attacker to flood the system in order to separate a certain message. 5. Intersection attack: Because of the on-line/off-line periods of the users an attacker may trace them by observation over a long period. 6. Collusion attack: A corrupt coalition of users or parts of the system may be able to trace certain users. Perfect means that there cannot occur a situation where an opponent gets valuable information concerning any communication relation or communication request from and to a certain user. However, no system can protect from an opponent with unlimited power. Therefore we assume that the opponent may not be able to break into cryptographic functions. Though, we have to consider that parts of the anonymous communication system may act as opponents (insider attacks). 1.2ÊÊ Functions of a perfect systemPrevention of collusion attack. A perfect anonymous communication system will be a distributed system. No central system can protect from a corrupt insider since he has all information concerning the sender and recipient of a communication relation. Thus, he can observe a commu-

show abstract

Dummy Traffic against Long Term Intersection Attacks

Berthold

Langos

2003

View full text Add to dashboard Cite

Identity Management Based on P3P

Berthold

Köhntopp

2001

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Oliver Berthold

Web MIXes: A System for Anonymous and Unobservable Internet Access

The Disadvantages of Free MIX Routes and How to Overcome Them

Project “anonymity and unobservability in the Internet”

Dummy Traffic against Long Term Intersection Attacks

Identity Management Based on P3P

Contact Info

Product

Resources

About