Gavin O'Gorman
ABSTRACT
Measuring the effectiveness of proposed black box correlation attacks against deployed anonymous networks is not feasible. This results in not being able to measure the effectiveness of defensive techniques, or performance enhancements with respect to anonymity. To overcome this problem, a discrete, event-based network simulation of the Tor anonymous network is developed. The simulation is validated against traffic transmitted through the real Tor network and the scalability of the simulation is measured. Simulations with up to 16,000 clients were run, upon which several attacks are implemented thus allowing for a measure of anonymity. Experimental defensive techniques are tested with corresponding anonymity measured.
- J-sim website. http://www.j-sim.org/.Google Scholar
- Renesys corporation. http://www.renesys.com.Google Scholar
- A. Back, U. Möller, and A. Stiglic. Traffic analysis attacks and trade-offs in anonymity providing systems. In I. S. Moskowitz, editor, Proceedings of Information Hiding Workshop (IH 2001), pages 245--257. Springer-Verlag, LNCS 2137, April 2001. Google ScholarDigital Library
- K. Bauer, D. McCoy, D. Grunwald, T. Kohno, and D. Sicker. Low-Resource Routing Attacks Against Anonymous Systems. Technical Report CU-CS-1025-07, University of Colorado at Boulder (2007).Google Scholar
- G. D. Bissias, M. Liberatore, and B. N. Levine. Privacy vulnerabilities in encrypted http streams. In Proceedings of Privacy Enhancing Technologies workshop (PET 2005), May 2005. Google ScholarDigital Library
- L. Breslau, D. Estrin, K. Fall, S. Floyd, J. Heidemann, A. Helmy, P. Huang, S. McCanne, K. Varadhan, Y. Xu, and H. Yu. Advances in network simulation. IEEE Computer, 33(5):59--67, May 2000. Google ScholarDigital Library
- A. Brown and M. Kolberg. Tools for peer-to-peer network simulation. http://www1.tools.ietf.org/wg/irtf/draft-irtf-p2prg-core-simulators-00.txt.Google Scholar
- X. Chang. Network simulations with opnet. In WSC '99: Proceedings of the 31st conference on Winter simulation, pages 307--314, New York, NY, USA, 1999. ACM Press. Google ScholarDigital Library
- D. Chaum. Untraceable electronic mail, return addresses, and digital pseudonyms. Communications of the ACM, 4(2), February 1981. Google ScholarDigital Library
- J. Cowie and H. Liu. Towards realistic million-node internet simulations. In Proceedings of the 1999 International Conference on Parallel and Distributed Processing Techniques and Applications, 1999.Google Scholar
- H. Daginawala and M. Wright. Studying Timing Analysis on the Internet with SubRosa. Lecture Notes in Computer Science, 5134:133--150, 2008. Google ScholarDigital Library
- T. Developers. Tor website (nov), 2008. http://tor.eff.org.Google Scholar
- R. Dingledine, N. Mathewson, and P. Syverson. Tor: The second-generation onion router. In Proceedings of the 13th USENIX Security Symposium, August 2004. Google ScholarDigital Library
- A. Feldmann, A. Gilbert, P. Huang, and W. Willinger. Dynamics of IP traffic: A study of the role of variability and the impact of control. Proceedings of ACM SIGCOMM'99, pages 301--313, 1999. Google ScholarDigital Library
- B. N. Levine, M. K. Reiter, C. Wang, and M. K. Wright. Timing attacks in low-latency mix-based systems. In A. Juels, editor, Proceedings of Financial Cryptography (FC '04). Springer-Verlag, LNCS 3110, February 2004.Google ScholarCross Ref
- M. Liljenstam, J. Liu, D. Nicol, Y. Yuan, G. Yan, and C. Grier. Rinse: the real-time immersive network simulation environment for network security exercises. Proceedings of the 19th ACM/IEEE/SCS Workshop on Principles of Advanced and Distributed Simulation (PADS), 2005. Google ScholarDigital Library
- M. Liljenstam, D. Nicol, V. Berk, and R. Gray. Simulating realistic network worm traffic for worm warning system design and testing. Proceedings of the 2003 ACM workshop on Rapid Malcode, pages 24--33, 2003. Google ScholarDigital Library
- R. E. Newman, I. S. Moskowitz, P. Syverson, and A. Serjantov. Metrics for traffic analysis prevention. In R. Dingledine, editor, Proceedings of Privacy Enhancing Technologies workshop (PET 2003). Springer-Verlag, LNCS 2760, March 2003.Google Scholar
- D. Nicol. Scalability of network simulators revisited. In Procedings of Communications Networks and Distributed Systems Modeling and Simulation Conference (CNDS) part of Western Multi-Confernce (WMC), 2003.Google Scholar
- D. Nicol, J. Liu, M. Liljenstam, and G. Yan. Simulation of large scale networks I: simulation of large-scale networks using SSF. Proceedings of the 35th conference on Winter simulation: driving innovation, pages 650--657, 2003. Google ScholarDigital Library
- G. O'Gorman and S. Blott. Large scale simulation of tor. In Advances in Computer Science ASIAN 2007. Computer and Network Security, volume 4846/2008 of Lecture Notes in Computer Science, pages 48--54. Springer Berlin / Heidelberg, 2008. Google ScholarDigital Library
- A. Serjantov and P. Sewell. Passive attack analysis for connection-based anonymity systems. In Proceedings of ESORICS 2003, October 2003.Google ScholarCross Ref
- V. Shmatikov and M.-H. Wang. Timing analysis in low-latency mix networks: Attacks and defenses. In Computer Security - ESORICS 2006, 2006. Google ScholarDigital Library
- L. Sweeney. k-anonymity: A model for protecting privacy. International Journal on Uncertainty, Fuzziness and Knowledge-based Systems, 10(5):557--570, 2002. Google ScholarDigital Library
- A. Varga. The omnet++ discrete event simulation system. In Proceedings of the European Simulation Multiconference (ESM'2001), 2001.Google Scholar
- B. Venkatraman and R. Newman-Wolfe. Performance analysis of a method for high level prevention of traffic analysis using measurements from a campus network. Computer Security Applications Conference, 1994. Proceedings., 10th Annual, pages 288--297, 1994.Google ScholarCross Ref
- Y. Xiang and W. Zhou. Mark-aided distributed filtering by using neural network for DDoS defense. Global Telecommunications Conference, 2005. GLOBECOM'05. IEEE, 3.Google Scholar
- Y. Zhu, X. Fu, B. Graham, R. Bettati, and W. Zhao. On flow correlation attacks and countermeasures in mix networks. In Proceedings of Privacy Enhancing Technologies workshop (PET 2004), volume 3424 of LNCS, May 2004. Google ScholarDigital Library
Index Terms
- Simulating low-latency anonymous networks
Recommendations
Protocol-level attacks against Tor
Tor is a real-world, circuit-based low-latency anonymous communication network, supporting TCP applications over the Internet. In this paper, we present an extensive study of protocol-level attacks against Tor. Different from existing attacks, the ...
A potential HTTP-based application-level attack against Tor
Tor has become one of the most popular overlay networks for anonymizing TCP traffic, however, the anonymity of Tor clients is threatened by various attacks exploiting traffic analysis or Tor's design features. Although considerable effort has been made ...
Design principles for low latency anonymous network systems secure against timing attacks
ACSW '07: Proceedings of the fifth Australasian symposium on ACSW frontiers - Volume 68Low latency anonymous network systems, such as Tor, were considered secure against timing attacks when the threat model does not include a global adversary. In this threat model the adversary can only see part of the links in the system. In a recent ...
Comments