[Metalab] today brainstorming about a new anonymity protocol?
michi1 at michaelblizek.twilightparadox.com
michi1 at michaelblizek.twilightparadox.com
Thu Mar 21 19:41:59 CET 2013
kHi!
On 17:54 Tue 19 Mar , Michael Kafka wrote:
> ohai metalab,
> (not an official security by candlelight, just feeling a little
> bit like intelligent distraction)
>
> i'll be in the lab around 19:00
Sorry, I was not there - your announcement was way too late.
> i would like to get in contact with some people who can spare time
> on implementing a protocol i stumbled upon a few years ago:
> Drac: An Architecture for Anonymous Low-Volume Communications
> (i think i already talked a few heads off in the recent months
> about this, but i'm convinced it's worth a shot)
...
> some papers can be found here:
> http://research.google.com/pubs/archive/36335.pdf
...
I have read part of the paper, but it did not really excite me. Some of the
flaws:
- It assumes you have a number of friends that everybody can know about and
some contacts which should be secret. This sounds flawed. If you care about
anonymity, you probably do not want to reveal who your friends are. Also,
your real world friends are probably very unlikely to use this program.
Many users will just use irc or something else to find "friends".
- The entry point selection is flawed. Your entry points are on average x hops
away from you. This does not apply to anybody else. If your attacker can
link the IDs to the entry points (which he can, since the private presence
server is not trusted), he will be able to link each ID to physical
identities. And even if he cannot link the IDs to the entry points, he can
probably still create a network map he watches the network closely enough.
Because most of your friends are likely in same country you are in, a
"global" passive observer is very likely.
- Passive observers are scary. Defeating simple end to end timing attacks
is the real challange. So far you can either choose between high latency
and high overhead. Globally synchronizing epochs sounds like an interesting
padding scheme, but it might be hard to implement. Also you still need a lot
of padding and you probably do not even know how much.
-Michi
--
programing a layer 3+4 network protocol for mesh networks
see http://michaelblizek.twilightparadox.com
More information about the Metalab
mailing list