CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz.

Slides:



Advertisements
Similar presentations
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
Advertisements

CMSC 414 Computer (and Network) Security Lecture 22 Jonathan Katz.
Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
Efficient Zero-Knowledge Proof Systems Jens Groth University College London.
CMSC 414 Computer and Network Security Lecture 26 Jonathan Katz.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
Project in Computer Security Integrating TOR’s attacks into the I2P darknet Chen Avnery Amihay Vinter.
CMSC 414 Computer (and Network) Security Lecture 26 Jonathan Katz.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
CMSC 414 Computer (and Network) Security Lecture 15 Jonathan Katz.
Explorations in Anonymous Communication Andrew Bortz with Luis von Ahn Nick Hopper Aladdin Center, Carnegie Mellon University, 8/19/2003.
CMSC 414 Computer (and Network) Security Lecture 21 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 15 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.
CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
By: Bryan Carey Randy Cook Richard Jost TOR: ANONYMOUS BROWSING.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Link Setup Time (ms) Details : How do sender and receiver synchronize i ? Discovery/binding messages: infrequent and narrow interface  short term linkability.
Modelling and Analysing of Security Protocol: Lecture 9 Anonymous Protocols: Theory.
CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 24 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 26 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 23 Jonathan Katz.
Circuit & Application Level Gateways CS-431 Dick Steflik.
CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 14 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
1 Chapter 13: Representing Identity What is identity Different contexts, environments Pseudonymity and anonymity.
Anonymous Communication Luis von Ahn Andrew Bortz Nick Hopper The Aladdin Center Carnegie Mellon University.
CMSC 414 Computer (and Network) Security Lecture 25 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
On the Anonymity of Anonymity Systems Andrei Serjantov (anonymous)
1 26-Aug-15 Addressing the network using IPv4 Lecture # 2 Engr. Orland G. Basas Prepared by: Engr. Orland G. Basas IT Lecturer.
1 3 Web Proxies Web Protocols and Practice. 2 Topics Web Protocols and Practice WEB PROXIES  Web Proxy Definition  Three of the Most Common Intermediaries.
Lecture 29 Page 1 Advanced Network Security Privacy in Networking Advanced Network Security Peter Reiher August, 2014.
DEMIGUISE STORAGE An Anonymous File Storage System VIJAY KUMAR RAVI PRAGATHI SEGIREDDY COMP 512.
CH2 System models.
Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms David Chaum CACM Vol. 24 No. 2 February 1981 Presented by: Adam Lee 1/24/2006 David.
An efficient secure distributed anonymous routing protocol for mobile and wireless ad hoc networks Authors: A. Boukerche, K. El-Khatib, L. Xu, L. Korba.
1 Lecture 14: Real-Time Communication Security real-time communication – two parties interact in real time (as opposed to delayed communication like )
0Gold 11 0Gold 11 LapLink Gold 11 Firewall Service How Connections are Created A Detailed Overview for the IT Manager.
Network Security Lecture 20 Presented by: Dr. Munam Ali Shah.
Class 8 Introduction to Anonymity CIS 755: Advanced Computer Security Spring 2015 Eugene Vasserman
Presented by: Suparita Parakarn Kinzang Wangdi Research Report Presentation Computer Network Security.
Anonymity - Background R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide.
Supplemental Information on TOR (The Onion Router) CEH ed 8, Rev 4 CS3695 – Network Vulnerability Assessment & Risk Mitigation–
Firewalls A brief introduction to firewalls. What does a Firewall do? Firewalls are essential tools in managing and controlling network traffic Firewalls.
Chapter 7 – Confidentiality Using Symmetric Encryption.
Authorized But Anonymous: Taking Charge of Your Personal Data Anna Lysyanskaya Brown University.
1 Anonymity. 2 Overview  What is anonymity?  Why should anyone care about anonymity?  Relationship with security and in particular identification 
CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.
Benjamin Knapic Nicholas Johnson.  “Tor is free software and an open network that helps you defend against a form of network surveillance that threatens.
Systems Architecture Anonymous Key Agreement Dominik Oepen
1Security for Service Providers – Dave Gladwin – Newport Networks – SIP ’04 – 22-Jan-04 Security for Service Providers Protecting Service Infrastructure.
CMSC 414 Computer and Network Security Lecture 15
Anonymous Communication
0x1A Great Papers in Computer Security
Anonymous Communication
ADDITIVE VS. MULTIPLICATIVE RELATIONSHIPS
Wireless Spoofing Attacks on Mobile Devices
Protection Mechanisms in Security Management
Anonymous Communication
Presentation transcript:

CMSC 414 Computer and Network Security Lecture 20 Jonathan Katz

Administrative items  Midterm next week –Based on everything from last midterm through today

Zero knowledge (ZK)  ZK proofs can offer deniability and secrecy  A zero-knowledge protocol for graph 3- colorability  Warning: the aim here is simplicity, and many subtleties and details are purposely being ignored

Applications of zero-knowledge  (Deniable) authentication –Generalization of the protocol we saw last time –Again, many subtleties and details omitted!  Anonymous credentials  Group signatures/trusted computing

Anonymity vs. pseudonymity  Anonymity –No one can identify the source of any messages –Unlinkability – cannot even tell that messages originated from the same person  Pseudonymity –No one can identify the source of a set of messages… –…but they can tell that they all came from the same person, with a known pseudonym  There is a broad scale of achievable anonymity… –Best you can hope for is limited by the network size!

Traffic analysis  May be possible to learn who is communicating with whom using traffic analysis  Typically, even if communication is encrypted the headers are not –Need unencrypted headers for routing  How is it possible to communicate anonymously?

Anonymous communication  You are sitting around a table with n people  How do you send an anonymous message to another person?  How do you broadcast a message to everyone without revealing your identity? –Linear-round protocol? –Constant-round protocol (DC-nets)  Is this secure only for “honest-but-curious” behavior, or also for malicious behavior?

Anonymizers  Single anonymizer proxy…  How to achieve bidirectional communication –Note: one side need not know the other  Anonymizers already exist! – –http

Anonymizers  Issues/drawbacks? –Robustness –Useful for hiding the source from the destination; less useful for preventing full-fledged traffic analysis… Unless encryption is used, which it typically would not be  Possible attacks –Latency vs. timing correlation 0-latency solution using spurious messages? –One user sending multiple messages to the same server –Message sizes –Replay attacks

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.