Securing anonymous communication channels under the selective DoS attack

Anupam Das; Nikita Borisov

doi:10.1007/978-3-642-39884-1_31

Securing anonymous communication channels under the selective DoS attack

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery, which increases the opportunity for more attack. We present a detection algorithm that filters out compromised communication channels for one of the most widely used anonymity networks, Tor. Our detection algorithm uses two levels of probing to filter out potentially compromised tunnels. We probabilistically analyze our detection algorithm and show its robustness against selective DoS attacks through simulation. We also analyze the overhead of our algorithm and show that we can achieve better security guarantee than the conventional Tor path selection algorithm, while adding only approximately 5% bandwidth overhead to the Tor network. Finally, we validate our design with experiments using the live Tor network.

Original language	English (US)
Title of host publication	Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers
Pages	362-370
Number of pages	9
DOIs	https://doi.org/10.1007/978-3-642-39884-1_31
State	Published - 2013
Event	17th International Conference on Financial Cryptography and Data Security, FC 2013 - Okinawa, Japan Duration: Apr 1 2013 → Apr 5 2013

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	7859 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	17th International Conference on Financial Cryptography and Data Security, FC 2013
Country/Territory	Japan
City	Okinawa
Period	4/1/13 → 4/5/13

Keywords

Anonymity
Tor network
denial of service (DoS) attack

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Online availability

10.1007/978-3-642-39884-1_31

Library availability

Discover UIUC Full Text

Cite this

Das, A., & Borisov, N. (2013). Securing anonymous communication channels under the selective DoS attack. In Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers (pp. 362-370). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7859 LNCS). https://doi.org/10.1007/978-3-642-39884-1_31

Securing anonymous communication channels under the selective DoS attack. / Das, Anupam; Borisov, Nikita.

Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers. 2013. p. 362-370 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7859 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Das, A & Borisov, N 2013, Securing anonymous communication channels under the selective DoS attack. in Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7859 LNCS, pp. 362-370, 17th International Conference on Financial Cryptography and Data Security, FC 2013, Okinawa, Japan, 4/1/13. https://doi.org/10.1007/978-3-642-39884-1_31

Das A, Borisov N. Securing anonymous communication channels under the selective DoS attack. In Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers. 2013. p. 362-370. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-39884-1_31

@inproceedings{8435f7ed33a84653b068a08f108b0fb9,

title = "Securing anonymous communication channels under the selective DoS attack",

abstract = "Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery, which increases the opportunity for more attack. We present a detection algorithm that filters out compromised communication channels for one of the most widely used anonymity networks, Tor. Our detection algorithm uses two levels of probing to filter out potentially compromised tunnels. We probabilistically analyze our detection algorithm and show its robustness against selective DoS attacks through simulation. We also analyze the overhead of our algorithm and show that we can achieve better security guarantee than the conventional Tor path selection algorithm, while adding only approximately 5% bandwidth overhead to the Tor network. Finally, we validate our design with experiments using the live Tor network.",

keywords = "Anonymity, Tor network, denial of service (DoS) attack",

author = "Anupam Das and Nikita Borisov",

year = "2013",

doi = "10.1007/978-3-642-39884-1_31",

language = "English (US)",

isbn = "9783642398834",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "362--370",

booktitle = "Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers",

note = "17th International Conference on Financial Cryptography and Data Security, FC 2013 ; Conference date: 01-04-2013 Through 05-04-2013",

}

TY - GEN

T1 - Securing anonymous communication channels under the selective DoS attack

AU - Das, Anupam

AU - Borisov, Nikita

PY - 2013

Y1 - 2013

N2 - Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery, which increases the opportunity for more attack. We present a detection algorithm that filters out compromised communication channels for one of the most widely used anonymity networks, Tor. Our detection algorithm uses two levels of probing to filter out potentially compromised tunnels. We probabilistically analyze our detection algorithm and show its robustness against selective DoS attacks through simulation. We also analyze the overhead of our algorithm and show that we can achieve better security guarantee than the conventional Tor path selection algorithm, while adding only approximately 5% bandwidth overhead to the Tor network. Finally, we validate our design with experiments using the live Tor network.

AB - Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery, which increases the opportunity for more attack. We present a detection algorithm that filters out compromised communication channels for one of the most widely used anonymity networks, Tor. Our detection algorithm uses two levels of probing to filter out potentially compromised tunnels. We probabilistically analyze our detection algorithm and show its robustness against selective DoS attacks through simulation. We also analyze the overhead of our algorithm and show that we can achieve better security guarantee than the conventional Tor path selection algorithm, while adding only approximately 5% bandwidth overhead to the Tor network. Finally, we validate our design with experiments using the live Tor network.

KW - Anonymity

KW - Tor network

KW - denial of service (DoS) attack

UR - http://www.scopus.com/inward/record.url?scp=84883267649&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84883267649&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-39884-1_31

DO - 10.1007/978-3-642-39884-1_31

M3 - Conference contribution

AN - SCOPUS:84883267649

SN - 9783642398834

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 362

EP - 370

BT - Financial Cryptography and Data Security - 17th International Conference, FC 2013, Revised Selected Papers

T2 - 17th International Conference on Financial Cryptography and Data Security, FC 2013

Y2 - 1 April 2013 through 5 April 2013

ER -

Securing anonymous communication channels under the selective DoS attack

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this