Dropping on the Edge: Flexibility and Traffic Confirmation in Onion Routing Protocols-Reference-Cited by-同舟云学术

Dropping on the Edge: Flexibility and Traffic Confirmation in Onion Routing Protocols

Published:2018-02-20 Issue:2 Volume:2018 Page:27-46
ISSN:2299-0984
Container-title:Proceedings on Privacy Enhancing Technologies
language:en
Short-container-title:

Author:

Rochet Florentin¹,Pereira Olivier¹

Affiliation:

1. UCLouvain , ICTEAM, Crypto Group , B-1348 Louvain-la-Neuve , Belgium .

Abstract

Abstract The design of Tor includes a feature that is common to most distributed systems: the protocol is flexible. In particular, the Tor protocol requires nodes to ignore messages that are not understood, in order to guarantee the compatibility with future protocol versions. This paper shows how to exploit this flexibility by proposing two new active attacks: one against onion services and the other against Tor clients. Our attack against onion services is a new low-cost side-channel guard discovery attack that makes it possible to retrieve the entry node used by an onion service in one day, without injecting any relay in the network. This attack uses the possibility to send dummy cells that are silently dropped by onion services, in accordance with the flexible protocol design, and the possibility to observe those cells by inspecting public bandwidth measurements, which act as a side channel. Our attack against Tor clients, called the dropmark attack, is an efficient 1-bit conveying active attack that correlates flows. Simulations performed in Shadow show that the attack succeeds with an overwhelming probability and with no noticeable impact on user performance. Finally, we open the discussion regarding a trade-off between flexibility and security in anonymous communication systems, based on what we learned within the scope of our attacks.

Publisher

Walter de Gruyter GmbH

Subject

General Medicine

Reference55 articles.

1. [1] Tor’s specifications. https://gitweb.torproject.org/torspec.git/tree/. Accessed: 2017-05-20.

2. [2] Generic, decentralized, unstoppable anonymity: The phantom protocol. http://www.magnusbrading.com/phantom/phantom-design-paper.pdf, 2011. Accessed: 2017-05-20.

3. [3] Relay early confirmation attack. https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack, 2014. Accessed: 2017-05-20.

4. [4] Atlas: web application to inspect details of currently running relays. https://atlas.torproject.org/, 2016. Accessed: 2016-12-20.

5. [5] Capacity of the Tor network. https://metrics.torproject.org/bandwidth-flags.html, 2017. Accessed: 2017-05-20.

Cited by 18 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A De-anonymization Attack against Downloaders in Freenet;IEEE INFOCOM 2024 - IEEE Conference on Computer Communications;2024-05-20

2. HSDirSniper: A New Attack Exploiting Vulnerabilities in Tor's Hidden Service Directories;Proceedings of the ACM Web Conference 2024;2024-05-13

3. Knock-Knock: De-Anonymise Hidden Services by Exploiting Service Answer Vulnerability;2024 IEEE Wireless Communications and Networking Conference (WCNC);2024-04-21

4. Node Selection-Based Anonymous Network Performance Optimization Method;2024 9th International Conference on Computer and Communication Systems (ICCCS);2024-04-19

5. A Systematic Survey on Security in Anonymity Networks: Vulnerabilities, Attacks, Defenses, and Formalization;IEEE Communications Surveys & Tutorials;2024