Abstract
The architectures of deployed anonymity systems such as Tor suffer from two key problems that limit user's trust in these systems. First, paths for anonymous communication are built without considering trust relationships between users and relays in the system. Second, the network architecture relies on a set of centralized servers. In this paper, we propose Pisces, a decentralized protocol for anonymous communications that leverages users' social links to build circuits for onion routing. We argue that such an approach greatly improves the system's resilience to attackers. A fundamental challenge in this setting is the design of a secure process to discover peers for use in a user's circuit. All existing solutions for secure peer discovery leverage structured topologies and cannot be applied to unstructured social network topologies. In Pisces, we discover peers by using random walks in the social network graph with a bias away from highly connected nodes to prevent a few nodes from dominating the circuit creation process. To secure the random walks, we leverage the reciprocal neighbor policy: if malicious nodes try to exclude honest nodes during peer discovery so as to improve the chance of being selected, then honest nodes can use a tit-for-tat approach and reciprocally exclude the malicious nodes from their routing tables. We describe a fully decentralized protocol for enforcing this policy, and use it to build the Pisces anonymity system.
Original language | English (US) |
---|---|
State | Published - 2013 |
Externally published | Yes |
Event | 20th Annual Network and Distributed System Security Symposium, NDSS 2013 - San Diego, United States Duration: Feb 24 2013 → Feb 27 2013 |
Conference
Conference | 20th Annual Network and Distributed System Security Symposium, NDSS 2013 |
---|---|
Country/Territory | United States |
City | San Diego |
Period | 2/24/13 → 2/27/13 |
All Science Journal Classification (ASJC) codes
- Computer Networks and Communications
- Control and Systems Engineering
- Safety, Risk, Reliability and Quality