Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Security and Cryptography II Anonymous & Unobservable Communication Stefan Köpsell (Slides [mainly] created by Andreas Pfitzmann) Technische Universität.

Published byRosalind Wade Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Security and Cryptography II Anonymous & Unobservable Communication Stefan Köpsell (Slides [mainly] created by Andreas Pfitzmann) Technische Universität."— Presentation transcript:

1 1 Security and Cryptography II Anonymous & Unobservable Communication Stefan Köpsell (Slides [mainly] created by Andreas Pfitzmann) Technische Universität Dresden, Faculty of Computer Science, D-01187 Dresden Nöthnitzer Str. 46, Room 3067 Phone: +49 351 463-38272, e-mail: sk13@inf.tu-dresden.de, https://dud.inf.tu-dresden.de/@inf.tu-dresden.dehttps://dud.inf.tu-dresden.de/

2 Observability of users in switched networks interceptor possible attackers telephone exchange operator manufacturer (Trojan horse) employee network termination radio television videophone phone internet countermeasure encryption link encryption

3 Observability of users in switched networks countermeasure encryption end-to-end encryption interceptor possible attackers telephone exchange operator manufacturer (Trojan horse) employee network termination radio television videophone phone internet

4 Observability of users in switched networks countermeasure encryption link encryption end-to-end encryption Problem:traffic data who with whom? when? how long? how much information? Aim: “protect” traffic data (and so data on interests, too) so that they couldn’t be captured. data on interests: Who? What? communication partner interceptor possible attackers telephone exchange operator manufacturer (Trojan horse) employee network termination radio television videophone phone internet

5 Observability of users in broadcast networks interceptor possible attackers radio television videophone phone internet (Examples: bus-, radio networks) any station gets all bits analogue signals (distance, bearing)

6 Since about 1990 reality Video-8 tape5 Gbyte = 3 * all census data of 1987 in Germany memory costs < 25 EUR 100 Video-8 tapes (or in 2014: 1 hard drive disk with 500 GByte for ≈ 35 EUR) store all telephone calls of one year: Who with whom ? When ? How long ? From where ? Reality or fiction?

7 With the development of television, and the technical advance which made it possible to receive and transmit simultaneously on the same instrument, private life came to an end. George Orwell, 1948 Excerpt from: 1984

8 Examples of changes w.r.t. anonymity and privacy Broadcast allows recipient anonymity — it is not detectable who is interested in which programme and information

9 Examples of changes w.r.t. anonymity and privacy Internet-Radio, IPTV, Video on Demand etc. support profiling

10 Remark: Plain old letter post has shown its dangers, but nobody demands full traceability of them … Anonymous plain old letter post is substituted by „surveillanceable“ e-Mails

11 The massmedia „newspaper“ will be personalised by means of Web, elektronic paper and print on demand

12 Privacy and the Cloud? [http://www.apple.com/icloud/]

13 Mechanisms to protect traffic data Protection outside the network Public terminals – use is cumbersome Temporally decoupled processing – communications with real time properties Local selection – transmission performance of the network – paying for services with fees Protection inside the network

14 Attacker (-model) Questions:  How widely distributed ? (stations, lines)  observing / modifying ?  How much computing capacity ? (computationally unrestricted, computationally restricted)

15 Realistic protection goals/attacker models: Technical solution possible?

16 ===T===Gat e===

17 Online Social Networks– Web 2.0

18 The Facebook-Problems  …at least two different problems:  1. Information leakage by (more or less) intentionally published (Profil-)data  (E-Mail) Contact list  Face recognitation  2. Profiling of every Internet user  „Like“-Button

19  developed 1997 by Netscape  original purpose: enable sessions (transactions) on the Web  small amount of data, sent from the Web server to the Browser  will be:  stored by the Browser  automatically transmitted with every visit of the Web server  usual content: unique identifier for re-identification (tracking) Cookies – served on the Web

20  1st visit of a Web-site  2nd and further visits of that Web-site Cookies – served on the Web

21  besides Cookies many other tracking mechanisms exist in modern Browsers  Flash-Cookies, DOM-Storage  GEO-Location, Web-Bugs  List of Fonts, List of Plugins, …  Tracking  Profiling, especially: group profiles  Goal: Link a person to a group of persons to derive unknown attributes of that person  “behavioural targeting / advertising”  „to be ‚read‘ out“  Why?  Make money!  “If you are not paying for it, you're not the customer; you're the product being sold.” [post on MetaFilter.com, August 26, 2010] To be tracked or not to be tracked?

22 Google‘s Revenue in Million Dollar

23 Facebook-“Like“-Button  small picture, embedded into many Web sites  >350000 Web-Sites  if a Facebook user clicks on the Like-Button, his friends will be informed  Facebook learns, which sites a user likes

24 Facebook-“Like“-Button

25

26 Facebook-“Like“-Button

27 Facebook-“Like“-Button

28 Facebook-“Like“-Button

29 Facebook-“Like“-Button Before You are allowed to enter this Web-site you have to call Facebook. Please tell your name, your address and the web-sites you plan to visit. Thanks for your cooperation.

30 Attacker (-model) Questions:  How widely distributed ? (stations, lines)  observing / modifying ?  How much computing capacity ? (computationally unrestricted, computationally restricted) Unobservability of an event E For attacker holds for all his observations B: 0 < P(E|B) < 1 perfect: P(E) = P(E|B) Anonymity of an entity Unlinkability of events if necessary: partitioning in classes

31 Counter measures  anonymous & unobservable communication  Broadcast  Mixes  DC-Net  private information retrieval  …  privacy-preserving  identity management  service utilisation  value exchange

32 The Mix protocol Idea: Provide unlinkability between incoming and outgoing messages Mix 1Mix 2 A Mix collects messages, changes their coding and forwards them in a different order. If all Mixes work together, they can reveal the way of a given messages.

33 Pseudonyms person pseudonyms role pseudonyms public person pseudonym non-public person pseudonym anonymous- person pseudonym business- relationship pseudonym transaction pseudonym A n o n y m i t y Scalability concerning the protection phone number account number biometric, DNA (as long as no register) pen name one-time password examples

34 Pseudonyms: Use across different contexts  partial order A  B stands for “B enables stronger unlinkability than A” number of an identity card, social security number, bank account pen name, employee identity card number customer number contract number one-time password, TAN, one-time use public-key pair

35  Usually: one identity per user Identity Management Age driving license Name Address Phone number Tax class account number E-Mail Problem: Linkability of records

36  Many Partial-Identities per user  Management / disclosure / linkability under the control of the user Privacy-preserving Identity management age Name address tax class account number p2p2 Name account number p3p3 Alter driving license p5p5 E-Mail p4p4 Name E-Mail p1p1 phone number

37 many services need only a few data revealing that data under a Pseudonym prevents unnecessary linkability with other data of the user different actions / data are initially unlinkable if one uses different pseudonyms Implementation: Pseudonyms Example: Car Rental necessary data : Possesion of a driving license valid for the car wanted p1p1 p2p2

38 Anonymous Credentials  Credential = Attestation of an attribute of a user (e.g. „Users has driving licvense “)  Steps:  Organisation issues Credentials  User shows credential to service provider  Properties:  User can show credentials under different pseudonyms (transformation)  Usage of the same credential with different pseudonyms prevents linkability against the service provider and the issuer. shows Credentials issues Credential publishes credential types Organisation User Service providers

39 Usage of Anonymous Credentials User A Credentials issuing Organisation have driving- license User B User X : User A has driving- license Service provider have driving- license have driving- license have driving- license

Download ppt "1 Security and Cryptography II Anonymous & Unobservable Communication Stefan Köpsell (Slides [mainly] created by Andreas Pfitzmann) Technische Universität."

Similar presentations

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
COMMUNICATING IN DIFFERENT WAYS USING THE TECHNOLOGIES AVAILABLE TO SUPPORT THEM. Over the years, each of the main technologies of the telecommunications.

COMMUNICATING IN DIFFERENT WAYS USING THE TECHNOLOGIES AVAILABLE TO SUPPORT THEM. Over the years, each of the main technologies of the telecommunications.
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.

2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
Greg Lamb. Introduction It is clear that we as consumers and entrepreneurs cannot expect complete privacy when discussing business matters. However… There.

Greg Lamb. Introduction It is clear that we as consumers and entrepreneurs cannot expect complete privacy when discussing business matters. However… There.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.

E-Commerce Security Issues. General E-Business Security Issues Any E-Business needs to be concerned about network security. The Internet is a “ public.
Chapter 9: Privacy, Crime, and Security

Chapter 9: Privacy, Crime, and Security
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
1 An Introduction to Digital Identity Andreas Pfitzmann Dresden University of Technology, Department of Computer Science, D-01062 Dresden Nöthnitzer Str.

1 An Introduction to Digital Identity Andreas Pfitzmann Dresden University of Technology, Department of Computer Science, D Dresden Nöthnitzer Str.
 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.

 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)
1 Enterprise Security Your Information Security and Privacy Responsibilities © 2008 Providence Health & Services This information may be replicated for.

1 Enterprise Security Your Information Security and Privacy Responsibilities © 2008 Providence Health & Services This information may be replicated for.
Introduction (Pendahuluan)  Information Security.

Introduction (Pendahuluan)  Information Security.
What is Localgiving.com? Offered throughout the Community Foundation Network as a fundraising tool for voluntary and community groups Mission: To provide.

What is Localgiving.com? Offered throughout the Community Foundation Network as a fundraising tool for voluntary and community groups Mission: To provide.
By Godfrey Aziyo Department of LIS Telephone: 0712 189946.

By Godfrey Aziyo Department of LIS Telephone:
CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.

CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.
Lecture Week 2 Networks, The Internet and the World Wide Web.

Lecture Week 2 Networks, The Internet and the World Wide Web.
Hierarchical file system Hierarchical file system - A hierarchical file system is how drives, folders, and files are displayed on an operating system.

Hierarchical file system Hierarchical file system - A hierarchical file system is how drives, folders, and files are displayed on an operating system.
Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.

Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.
Week 5 IBS 520 Computer and Online Security. Cybercrime Online or Internet- based illegal acts What is a computer security risk? Computer crime Any illegal.

Week 5 IBS 520 Computer and Online Security. Cybercrime Online or Internet- based illegal acts What is a computer security risk? Computer crime Any illegal.

Similar presentations

Ads by Google