TY - GEN
T1 - Denial of service or denial of security?
AU - Borisov, Nikita
AU - Danezis, George
AU - Mittal, Prateek
AU - Tabriz, Parisa
PY - 2007
Y1 - 2007
N2 - We consider the effect attackers who disrupt anonymous communications have on the security of traditional high- and low-latency anonymous communication systems, as well as on the Hydra-Onion and Cashmere systems that aim to offer reliable mixing, and Salsa, a peer-to-peer anonymous communication network. We show that denial of service (DoS) lowers anonymity as messages need to get retransmitted to be delivered, presenting more opportunities for attack. We uncover a fundamental limit on the security of mix networks, showing that they cannot tolerate a majority of nodes being malicious. Cashmere, Hydra-Onion, and Salsa security is also badly affected by DoS attackers. Our results are backed by probabilistic modeling and extensive simulations and are of direct applicability to deployed anonymity systems.
AB - We consider the effect attackers who disrupt anonymous communications have on the security of traditional high- and low-latency anonymous communication systems, as well as on the Hydra-Onion and Cashmere systems that aim to offer reliable mixing, and Salsa, a peer-to-peer anonymous communication network. We show that denial of service (DoS) lowers anonymity as messages need to get retransmitted to be delivered, presenting more opportunities for attack. We uncover a fundamental limit on the security of mix networks, showing that they cannot tolerate a majority of nodes being malicious. Cashmere, Hydra-Onion, and Salsa security is also badly affected by DoS attackers. Our results are backed by probabilistic modeling and extensive simulations and are of direct applicability to deployed anonymity systems.
KW - Anonymity
KW - Attacks
KW - Denial of service
KW - Reliability
UR - http://www.scopus.com/inward/record.url?scp=50249119735&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=50249119735&partnerID=8YFLogxK
U2 - 10.1145/1315245.1315258
DO - 10.1145/1315245.1315258
M3 - Conference contribution
AN - SCOPUS:50249119735
SN - 9781595937032
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 92
EP - 102
BT - CCS'07 - Proceedings of the 14th ACM Conference on Computer and Communications Security
T2 - 14th ACM Conference on Computer and Communications Security, CCS'07
Y2 - 29 October 2007 through 2 November 2007
ER -