Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

Guard Sets in Tor using AS Relationships

Guard Sets in Tor using AS Relationships AbstractThe mechanism for picking guards in Tor suffers from security problems like guard fingerprinting and from performance issues. To address these issues, Hayes and Danezis proposed the use of guard sets, in which the Tor system groups all guards into sets, and each client picks one of these sets and uses its guards. Unfortunately, guard sets frequently need nodes added or they are broken up due to fluctuations in network bandwidth. In this paper, we first show that these breakups create opportunities for malicious guards to join many guard sets by merely tuning the bandwidth they make available to Tor, and this greatly increases the number of clients exposed to malicious guards. To address this problem, we propose a new method for forming guard sets based on Internet location. We construct a hierarchy that keeps clients and guards together more reliably and prevents guards from easily joining arbitrary guard sets. This approach also has the advantage of confining an attacker with access to limited locations on the Internet to a small number of guard sets. We simulate this guard set design using historical Tor data in the presence of both relay-level adversaries and networklevel adversaries, and we find that our approach is good at confining the adversary into few guard sets, thus limiting the impact of attacks. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png Proceedings on Privacy Enhancing Technologies de Gruyter

Guard Sets in Tor using AS Relationships

Download PDF
21 pages

Loading next page...
 
/lp/de-gruyter/guard-sets-in-tor-using-as-relationships-fFNbzoZTYk
Publisher
de Gruyter
Copyright
© 2018 Mohsen Imani et al., published by De Gruyter Open
ISSN
2299-0984
eISSN
2299-0984
DOI
10.1515/popets-2018-0008
Publisher site
See Article on Publisher Site

Abstract

AbstractThe mechanism for picking guards in Tor suffers from security problems like guard fingerprinting and from performance issues. To address these issues, Hayes and Danezis proposed the use of guard sets, in which the Tor system groups all guards into sets, and each client picks one of these sets and uses its guards. Unfortunately, guard sets frequently need nodes added or they are broken up due to fluctuations in network bandwidth. In this paper, we first show that these breakups create opportunities for malicious guards to join many guard sets by merely tuning the bandwidth they make available to Tor, and this greatly increases the number of clients exposed to malicious guards. To address this problem, we propose a new method for forming guard sets based on Internet location. We construct a hierarchy that keeps clients and guards together more reliably and prevents guards from easily joining arbitrary guard sets. This approach also has the advantage of confining an attacker with access to limited locations on the Internet to a small number of guard sets. We simulate this guard set design using historical Tor data in the presence of both relay-level adversaries and networklevel adversaries, and we find that our approach is good at confining the adversary into few guard sets, thus limiting the impact of attacks.

Journal

Proceedings on Privacy Enhancing Technologiesde Gruyter

Published: Jan 1, 2018

References

  • Timing analysis in low - latency mix systems FC Feb
    Levine
  • Users get routed correlation on tor by realistic adversaries InProceedings of the Conference on Computer pages New
    Johnson
  • Data - collecting service in the Tor network https collector torproject org
  • Locating hidden servers
    Overlier
  • practical congestion attack on Tor using long paths
    Evans
  • Passive - logging attacks against anonymous communications systems on Information and System
    Wright
  • Borisov Stealthy traffic analysis of low - latency anonymous communication using throughput - fingerprinting Available athttp netfiles uiuc edu mittal www throughputfingerprinting pdf
    Mittal
  • sets for onion routing on
    Hayes
  • Tor users https metrics torproject org userstatsrelay table html
  • One fast guard for life or months
    Dingledine
  • practical congestion attack on Tor using long paths
    Evans
  • Never been Tor s congestion management blossoms with kernel - informed socket transport In rd pages San CA Aug
    Jansen
  • Practical traffic analysis Extending and resisting statistical disclosure workshop PET
    Mathewson
  • RAPTOR Routing attacks on privacy in Tor In th pages Aug
    Sun
  • Tor directory protocol version https gitweb torproject org torspec git tree dir spec txt
  • Changing of the guards framework for understanding and improving entry guard selection in tor InProceedings of the Workshop on Privacy in the Electronic pages New
    Elahi
  • The Tor Project Tor metrics portal http metrics torproject org
  • Passive - logging attacks against anonymous communications systems on Information and System
    Wright
  • AS Organizations https www caida org data asorganizations
    Dataset
  • AS relationships customer cones validation Conference pages
    Luckie
  • Locating hidden servers
    Overlier
  • Timing analysis in low - latency mix systems FC Feb
    Levine
  • Avoiding the man on the wire : Improving tor s security with trust - aware path selection In th Symposium on Network and Distributed System
    Johnson
  • Low - cost traffic analysis of Tor
    Murdoch
  • Shadow Running tor in a box for accurate and efficient experimentation InProceedings of the th Symposium on Network and Distributed System Internet
    Jansen
  • AS - awareness in Tor path selection In editors Proceedings of the Conference on and Communications pages November
    Edman
  • Defending tor from network adversaries case study of network path prediction on
    Joshua Juen
  • http www alexa com
    Alexa
  • Tor directory protocol version https gitweb torproject org torspec git tree dir spec txt
  • On inferring autonomous system relationships in the Internet IEEE Transactions on Networks TON
  • Users get routed correlation on tor by realistic adversaries InProceedings of the Conference on Computer pages New
    Johnson
  • sets for onion routing on
    Hayes
  • The AS relationships http www caida org data as relationships
    CAIDA
  • http www alexa com
    Alexa
  • Stealthy traffic analysis of low - latency anonymous communication using throughput fingerprinting InProceedings of the th ACM conference on Computer and Communications
    Mittal
  • kc claffy AS relationships Inference validation
    Dimitropoulos
  • AS path inference by exploiting known AS paths
  • Low - cost traffic analysis of Tor
    Murdoch
  • One fast guard for life or months
    Dingledine
  • Defending tor from network adversaries case study of network path prediction on
    Joshua Juen
  • AS relationships customer cones validation Conference pages
    Luckie
  • Stealthy traffic analysis of low - latency anonymous communication using throughput fingerprinting InProceedings of the th ACM conference on Computer and Communications
    Mittal
  • RAPTOR Routing attacks on privacy in Tor In th pages Aug
    Sun
  • Shadow http shadow github io
  • Changing of the guards framework for understanding and improving entry guard selection in tor InProceedings of the Workshop on Privacy in the Electronic pages New
    Elahi
  • AS path inference by exploiting known AS paths
  • Destination - naive asawareness in anonymous communications on
    Barton
  • Methodically modeling the Tor network InProceedings of the USENIX Workshop on Experimentation and Test
    Jansen
  • Avoiding the man on the wire : Improving tor s security with trust - aware path selection In th Symposium on Network and Distributed System
    Johnson
  • data http www caida org data
    CAIDA
  • Low - cost traffic analysis of Tor InProceedings of the on and Privacy
    Murdoch
  • Shadow Running tor in a box for accurate and efficient experimentation InProceedings of the th Symposium on Network and Distributed System Internet
    Jansen
  • data http www caida org data
    CAIDA
  • Borisov Stealthy traffic analysis of low - latency anonymous communication using throughput - fingerprinting Available athttp netfiles uiuc edu mittal www throughputfingerprinting pdf
    Mittal
  • Destination - naive asawareness in anonymous communications on
    Barton
  • Tin How much anonymity does network latency leak on Information and System
    Hopper
  • AS - awareness in Tor path selection In editors Proceedings of the Conference on and Communications pages November
    Edman
  • Tor users https metrics torproject org userstatsrelay table html
  • Never been Tor s congestion management blossoms with kernel - informed socket transport In rd pages San CA Aug
    Jansen
  • AS Organizations https www caida org data asorganizations
    Dataset
  • On inferring autonomous system relationships in the Internet IEEE Transactions on Networks TON
  • Practical traffic analysis Extending and resisting statistical disclosure workshop PET
    Mathewson
  • The Tor Project Tor metrics portal http metrics torproject org
  • Shadow http shadow github io
  • Data - collecting service in the Tor network https collector torproject org
  • kc claffy AS relationships Inference validation
    Dimitropoulos
  • Tin How much anonymity does network latency leak on Information and System
    Hopper
  • Low - cost traffic analysis of Tor InProceedings of the on and Privacy
    Murdoch
  • The AS relationships http www caida org data as relationships
    CAIDA
  • Methodically modeling the Tor network InProceedings of the USENIX Workshop on Experimentation and Test
    Jansen