TUC: Time-Sensitive and Modular Analysis of Anonymous Communication

Author

Backes, Michael ; Manoharan, Praveen ; Mohammadi, Esfandiar

Author_Institution

CISPA, Saarland Univ., Saarbrucken, Germany

fYear

2014

fDate

19-22 July 2014

Firstpage

383

Lastpage

397

Abstract

The anonymous communication protocol Tor constitutes the most widely deployed technology for providing anonymity for user communication over the Internet. Several frameworks have been proposed that show strong anonymity guarantees, none of these, however, are capable of modeling the class of traffic-related timing attacks against Tor, such as traffic correlation and website fingerprinting. In this work, we present TUC: the first framework that allows for establishing strong anonymity guarantees in the presence of time-sensitive adversaries that mount traffic-related timing attacks. TUC incorporates a comprehensive notion of time in an asynchronous communication model with sequential activation, while offering strong compositionality properties for security proofs. We apply TUC to evaluate a novel countermeasure for Tor against website fingerprinting attacks. Our analysis relies on a formalization of the onion routing protocol that underlies Tor and proves rigorous anonymity guarantees in the presence of traffic-related timing attacks.

Keywords

Internet; computer network security; routing protocols; Internet; Tor protocol; Web site fingerprinting attack; anonymity guarantee; anonymous communication protocol; onion routing protocol; time-sensitive adversaries; traffic correlation attack; traffic-related timing attacks; user communication; Analytical models; Clocks; Frequency modulation; Routing protocols; Security; Timing; Anonymity Guarantees; Anonymous Communication Protocols; Timing Attacks; Tor;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Security Foundations Symposium (CSF), 2014 IEEE 27th

Conference_Location

Vienna

Type

conf

DOI

10.1109/CSF.2014.34

Filename

6957124