annou ouncem emen ents
play

Annou ouncem emen ents This Wednesday: No office hour from me I - PowerPoint PPT Presentation

Dec 23, 2022 •667 likes •979 views

Annou ouncem emen ents This Wednesday: No office hour from me I am travelling to DC for CPS PI meeting This Thursday: Guest Lecture on Machine Learning Security One of the hottest security research topics today Some of you

  1. Annou ouncem emen ents This Wednesday: No office hour from me • I am travelling to DC for CPS PI meeting This Thursday: • Guest Lecture on Machine Learning Security • One of the hottest security research topics today • Some of you might find the speaker familiar  • Attention: It’s within the scope of final exam •1

  2. CS 1 134 SPRING 2 2019 LECTUR URE 1 14 Privacy cy a and An Anon onymity ty [lecture slides are adapted from previous slides by Prof. Gene Tsudik] 2

  3. Privacy • Privacy and Society • Basic individual right & desire • Also relevant to corporations & government agencies • Recently increased awareness • But, public ’ s perception of privacy is fickle • Privacy and Technology in Recent Years • >>Information disclosed on the Internet (Image from geekologie.com) • >>Handling and transfer of sensitive information • <<Privacy and accountability 3

  4. Privacy on Public Networks • The Internet is designed as a public network • Anyone on your LAN (wired or wireless) can see your traffic • Network routers see all traffic that passes through them • Routing information is public • IP packet headers identify source and destination addresses • A passive observer can easily figure out who is talking to whom • Encryption (e.g., SSL or IPSec) does not hide identities • Encryption hides payload, not routing+addressing information • Even IP-level encryption (tunnel-mode IPsec/ESP) reveals IP addresses of IPsec gateways 4

  5. Applications of Anonymity (1) • Privacy • Hide online transactions, web browsing, etc. from intrusive governments, marketers, archival/search entities (e.g., Google) as well as from criminals and snoops • Untraceable Electronic Mail • Corporate whistle-blowers • Political dissidents in oppressive societies • Socially sensitive communications • Confidential business negotiations • Law Enforcement and Intelligence • Sting operations • Secret communications on a public network • Informers, secret agents, etc. 5

  6. Applications of Anonymity (2) • Digital/Electronic Cash • Electronic currency with properties of paper money (online purchases unlinkable to buyer ’ s identity) • Anonymous Electronic Voting • Censorship-Resistant Publishing • Crypto-Anarchy • “ Some people say that “anarchy won't work.” That's not an argument against anarchy; that's an argument against work. ” – Bob Black 6

  7. Applications of Anonymity (3) • Porn • Human Trafficking • Libel • Disinformation = Fake News / Propaganda • Sale of Illegal Substances (e.g., SilkRoad) • Tax Avoidance (via Untraceable Payments) • Incitement to Criminal Activity (e.g., Murder, Rioting, Genocide, Terrorism) 7

  8. What is Ano Anonymity? • Anonymity : inability to identify someone within a set of subjects (size varies) • Different from PRIVACY – right to be left alone • To be anonymous, need to hide your activities among similar activities by others • One cannot be anonymous alone! • Big difference between anonymity and confidentiality • Unlinkability : separation of action and identity performing that action • For example, sender and his email are no more related after observing communication than they were before • Unobservability : inability to tell whether a certain action took place • very hard to achieve 8

  9. Attacks on Anonymity • Passive Traffic Analysis • Infer from network traffic who is talking to whom • To hide your traffic, must carry other people ’ s traffic! • Active Traffic Analysis • Inject packets or put a timing signature on a packet flow • Compromise of Network Nodes (such as Routers) • Not obvious which nodes have been compromised • Attacker may be passively logging traffic • Do not fully trust any individual node • Assume that some fraction of nodes is good, but do not know which 9

  10. Chaum’s Mix (David Chaum, ca. 1980-1981) • Earliest proposal for anonymous email: • David Chaum, “ Untraceable electronic mail, return addresses, and digital pseudonyms”, Communications of the ACM, February 1981. • Public-key crypto + trusted re-mailer (Mix) Before spam, people thought • Untrusted communication medium anonymous email was a good idea  • Public-keys used as persistent pseudonyms • Modern anonymity systems use Mix as the basic building block 10

  11. Basic Mix Design B {r 1 ,{r 0 ,M} pk(B) ,B} pk(mix) {r 0 ,M} pk(B) ,B A {r 5 ,M ’’ } pk(B) ,B C E {r 2 ,{r 3 ,M ’ } pk(E) ,E} pk(mix) {r 3 ,M ’ } pk(E) ,E D Mix Adversary knows all senders and {r 4 ,{r 5 ,M ’’ } pk(B) ,B} pk(mix) all receivers, but cannot link a sent message with a received message 11

  12. Anonymous Return Addresses M includes {K 1 ,A} pk(mix ’ ) , K 2 , where K 2 is a fresh public key and MIX ’ is possibly different from MIX {r 1 ,{r 0 ,M} pk(B) ,B} pk(mix) {r 0 ,M} pk(B) ,B B MIX A A,{{r 2 ,M ’ } K 2 } K 1 {K 1 ,A} pk(mix ’ ) , {r 2 ,M ’ } K 2 Response MIX ’ Secrecy without authentication (good for an online confession service) •12

  13. Mix Cascade • Messages are sent through a sequence of mixes • Can also form an arbitrary network of mixes ( “ mixnet ” ) • Some mixes may be controlled by attacker, but even a single good mix guarantees some anonymity • Pad and buffer traffic to foil correlation attacks 13

  14. Disadvantages of Basic Mixnets • Public-key encryption and decryption at each mix are computationally expensive • Basic mixnets have high latency • Ok for email, but not for anonymous Web browsing • Challenge: low-latency anonymity network • Use public-key cryptography to establish a “ circuit ” with pairwise symmetric keys between hops on the circuit • Then use symmetric decryption and re-encryption to move data messages along the established circuits • Each node behaves like a mix; anonymity is preserved even if some nodes are compromised 14

  15. Another Idea: Randomized Routing • Hide sources by routing messages randomly • Popular technique: Crowds, Freenet, Onion routing • Routers do not know if the apparent source of a message is the true sender or another router 15

  16. [Reed, Syverson, Goldschlag 1997] Onion Routing (early Tor) R R R 4 R R 3 R R 1 R R 2 Alice R Bob • Sender chooses a random sequence of routers • Some routers are honest, some are not • Sender controls path length 16

  17. Route Establishment (Early Tor) R 2 R 4 Alice R 3 Bob R 1 {M} pk(B) {B,k 4 } pk(R4) ,{ } k4 {R 4 ,k 3 } pk(R3) ,{ } k3 {R 3 ,k 2 } pk(R2) ,{ } k2 {R 2 ,k 1 } pk(R1) ,{ } k1 • Routing info for each link encrypted with router ’ s public key • Each router learns only the identity of the next router 17

  18. The Onion Router (current Tor) • Second-generation onion routing network • http://tor.eff.org • Specifically designed for low-latency anonymous Internet communications (e.g., Web browsing) • Running since October 2003 • Hundreds of nodes on all continents • 2.5 million users as of 05/2019 • “ Easy-to-use ” client proxy • Freely available, can use it for anonymous browsing • Available for smartphones and tablets too • TorBrowser – get it!!! 18

  19. Tor Circuit Setup (1) • Client proxy establishes a symmetric session key and circuit with Onion Router #1 19

  20. Tor Circuit Setup (2) • Client proxy extends the circuit by establishing a symmetric session key with Onion Router #2 • Tunnel through Onion Router #1 20

  21. Tor Circuit Setup (3) • Client proxy extends the circuit by establishing a symmetric session key with Onion Router #3 • Tunnel through Onion Routers #1 and #2 21

  22. Using a Tor Circuit • Client applications connect and communicate over the established Tor circuit (also to multiple dst-s) • Datagrams are decrypted and re-encrypted at each link 22

  23. Tor Management Issues • Many applications can share one circuit • Multiple TCP streams over one anonymous connection • Tor router do not need root privileges • Encourages people to set up their own routers • More participants = better anonymity for everyone • Directory servers • Maintain lists of active onion routers, their locations, current public keys, etc. • Control how new routers join the network • “ Sybil attack ” : attacker creates a large number of routers • Directory servers ’ keys ship with Tor code 23

  24. Deployed Anonymity Systems • Free Haven project has an excellent bibliography on anonymity • http://www.freehaven.net/anonbib • Tor (http://tor.eff.org) • Overlay circuit-based anonymity network • Best for low-latency applications such as anonymous Web browsing • Mixminion (http://www.mixminion.net) • Network of mixes • Best for high-latency applications such as anonymous email 24

  25. Dining Cryptographers • How to make a message public, but in a perfectly untraceable manner • David Chaum. “ The dining cryptographers problem: unconditional sender and recipient untraceability. ” Journal of Cryptology, 1988. • Guarantees information-theoretic anonymity for message senders • VERY strong form of anonymity: defeats adversary who has unlimited computational power • Difficult to make practical • In group of size N, need N random bits to send 1 bit 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Annou ouncem emen ents The room for TA/reader office hour is changed to ICS2 214, 215, 216, 217

Annou ouncem emen ents The room for TA/reader office hour is changed to ICS2 214, 215, 216, 217

Annou ouncem emen ents The room for TA/reader office hour is changed to ICS2 214, 215, 216, 217 . Time: still Thu 5-6 PM About course prerequisite CS161 + one or two of (CS143A, CS131, CS132) is the ideal background If not

594 views • 40 slides
Lecture: Sampling and Standard Error 6.0002 LECTURE 8 1 Annou An ouncem emen ents Relevant

Lecture: Sampling and Standard Error 6.0002 LECTURE 8 1 Annou An ouncem emen ents Relevant

Lecture: Sampling and Standard Error 6.0002 LECTURE 8 1 Annou An ouncem emen ents Relevant reading: Chapter 17 No lecture Wednesday of next week! 6.0002 LECTURE 8 2 Re Recall Inferential Statistics Inferential statistics: making

505 views • 33 slides
Annou ouncem cements ts Homework 1 is released Available on the course website Due

Annou ouncem cements ts Homework 1 is released Available on the course website Due

Annou ouncem cements ts Homework 1 is released Available on the course website Due in two weeks : 10/22/19 11:59pm Submit through GradeScope TA Sam gave a tutorial last Wednesday 1 Lecture 4 Encryption II Suggested

560 views • 34 slides
Annou ouncem cements ts Midterm exam Next Thursday , in class (2-3:20pm) Bring your

Annou ouncem cements ts Midterm exam Next Thursday , in class (2-3:20pm) Bring your

Annou ouncem cements ts Midterm exam Next Thursday , in class (2-3:20pm) Bring your photo ID with you Next Tuesday: No Class!! I am travelling to the security area PI meeting in DC Please use the time to prepare for the

590 views • 34 slides
Cal alHEERS HEERS IT IT Sec ecur urit ity y Req equi uirem emen ents ts Review

Cal alHEERS HEERS IT IT Sec ecur urit ity y Req equi uirem emen ents ts Review

Ca California ornia Health th Benef efit it Exchange ange Cal alHEERS HEERS IT IT Sec ecur urit ity y Req equi uirem emen ents ts Review Briefing May 2012 Table le of Cont ntents ents 1. Overview 2. CalHEERS security

94 views • 8 slides
June 13, 2019 FOR ORWAR ARD LOOK OOKIN ING STATEM EMEN ENTS Unless otherwise indicated in

June 13, 2019 FOR ORWAR ARD LOOK OOKIN ING STATEM EMEN ENTS Unless otherwise indicated in

Joint Annual General Meetings of Granite Real Estate Investment Trust and Granite REIT Inc. June 13, 2019 FOR ORWAR ARD LOOK OOKIN ING STATEM EMEN ENTS Unless otherwise indicated in this presentation, all information is presented as of

352 views • 11 slides
Human rights p protection a and equality a as k key ey e elem emen ents o of inclusive s

Human rights p protection a and equality a as k key ey e elem emen ents o of inclusive s

Human rights p protection a and equality a as k key ey e elem emen ents o of inclusive s societies i in E Europe Clau audia a Lam, m, Deputy t y to t the D e Direc ector a ad i inter erim, Office o of t the C Council of

206 views • 3 slides
Si Simulating blending ef effects on statistical mea easurem emen ents of of galaxi xies

Si Simulating blending ef effects on statistical mea easurem emen ents of of galaxi xies

Si Simulating blending ef effects on statistical mea easurem emen ents of of galaxi xies es Erfan Nourbakhsh (UC Davis) August 14, 2018 Tucson, Arizona 1 Credit: journey.ritzcarlton.com Galaxy blending - as a 2D phenomenon -

500 views • 22 slides
ROLE E AND U D USE SE OF IMPR PROVED VED AGRICU CULTURAL I IMPL PLEM EMEN ENTS Dr. Dr

ROLE E AND U D USE SE OF IMPR PROVED VED AGRICU CULTURAL I IMPL PLEM EMEN ENTS Dr. Dr

ROLE E AND U D USE SE OF IMPR PROVED VED AGRICU CULTURAL I IMPL PLEM EMEN ENTS Dr. Dr . G. M. . M. SUJIT ITH UNI UNIVER VERSI SITY TY O OF F AGRICUL ULTUR TURAL SC L SCIENC ENCES ES,BANG NGALORE KARNATAKA KA AKA ROLE

694 views • 58 slides
We Spur pur W Wrang ngling ng Annua nnual A Audi udit and nd Tax Req equirem emen ents

We Spur pur W Wrang ngling ng Annua nnual A Audi udit and nd Tax Req equirem emen ents

We Spur pur W Wrang ngling ng Annua nnual A Audi udit and nd Tax Req equirem emen ents NAVREF 27 th Annual Conference San Antonio, Texas September 16, 2019 1:30pm Introduc oductions ns Bennie Lewis, CPA Tampa and Orlando Office

596 views • 28 slides
Elem emen ents ts: C Commu mmunity ty Por ortal f for or High-Precis cision ion Atom

Elem emen ents ts: C Commu mmunity ty Por ortal f for or High-Precis cision ion Atom

2020 NSF CYBERINFRASTRUCTURE FOR SUSTAINED SCIENTIFIC INNOVATION (CSSI) PRINCIPAL INVESTIGATOR MEETING Elem emen ents ts: C Commu mmunity ty Por ortal f for or High-Precis cision ion Atom omic P c Physics cs Dat ata a and and

514 views • 26 slides
Lectur ture e 15 Logic I Intro a and nd PDCL 1 Announ nouncem emen ents Marked

Lectur ture e 15 Logic I Intro a and nd PDCL 1 Announ nouncem emen ents Marked

Computer Science CPSC 322 Lectur ture e 15 Logic I Intro a and nd PDCL 1 Announ nouncem emen ents Marked midterms will be available on Thursday (with solutions) Assignment 3 will be posted on Th. Due Wed. Nov 15 2 late

852 views • 69 slides
Adver ertisem emen ents Chris Lobb, Maryland 1 pm Friday Campbell group NIST/Maryland

Adver ertisem emen ents Chris Lobb, Maryland 1 pm Friday Campbell group NIST/Maryland

Adver ertisem emen ents Chris Lobb, Maryland 1 pm Friday Campbell group NIST/Maryland Condensed Matter/AMO Journal Club Experimental Challenges to Inducing Superconductivity in Quantum Hall Edge States Today 4 pm, 464 Loomis

555 views • 20 slides
Measur asurem emen ents of RF noi ts of RF noise i e in InG InGaAs/InAlA As/InAlAs r s

Measur asurem emen ents of RF noi ts of RF noise i e in InG InGaAs/InAlA As/InAlAs r s

Measur asurem emen ents of RF noi ts of RF noise i e in InG InGaAs/InAlA As/InAlAs r s recessed diodes: cessed diodes: Sign Signatures of shot-noise suppr es of shot-noise suppression ssion O. Garca-Prez, J. Mateos , S. Prez, T.

643 views • 17 slides
Investor Presentation NASDAQ: SLGG August 2020 Forward-Looking ing Statem emen ents Certain

Investor Presentation NASDAQ: SLGG August 2020 Forward-Looking ing Statem emen ents Certain

Investor Presentation NASDAQ: SLGG August 2020 Forward-Looking ing Statem emen ents Certain statements in this presentation constitute forward-looking statements within the meaning of Section 21E of the Securities Exchange Act of 1934,

599 views • 17 slides
2020 2020-2024 2024 Unif ifie ied State Plan Strateg egic E Elem emen ents Overview

2020 2020-2024 2024 Unif ifie ied State Plan Strateg egic E Elem emen ents Overview

November 13, 2019 2020 2020-2024 2024 Unif ifie ied State Plan Strateg egic E Elem emen ents Overview Presentation provides a review of the strategic elements of the Unified State Plan What are the strategic elements of the

196 views • 19 slides
CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CS573 Data Privacy and Security CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit: Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan MIT CSAIL Problem Confidential

576 views • 31 slides
How Do Tor Users Interact With Onion Services? Philipp Winter, Annie Edmundson , Laura Roberts,

How Do Tor Users Interact With Onion Services? Philipp Winter, Annie Edmundson , Laura Roberts,

How Do Tor Users Interact With Onion Services? Philipp Winter, Annie Edmundson , Laura Roberts, Agnieszka Dutkowska-Zuk, Marshini Chetty, Nick Feamster USENIX Security Symposium 15 August 2018 1 Tor is a Decentralized Anonymity Network The

1.43k views • 61 slides
iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste

iLab Onion Routing Benjamin Hof hof@in.tum.de Lehrstuhl fr Netzarchitekturen und Netzdienste Fakultt fr Informatik Technische Universitt Mnchen Lab 9 16ss 1 / 38 Outline Introduction Trust architecture Protocols Attacks

879 views • 47 slides
Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea

Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea

Onion Routing Meant to handle issue of people knowing who youre talking to Basic idea is to conceal sources and destinations By sending lots of crypo-protected packets between lots of places Each packet goes through multiple

366 views • 20 slides
Package management over Tor PkgsrcCon 2017 alnsn@NetBSD.org What is Tor? Introducing

Package management over Tor PkgsrcCon 2017 alnsn@NetBSD.org What is Tor? Introducing

Package management over Tor PkgsrcCon 2017 alnsn@NetBSD.org What is Tor? Introducing http://pkgsrcbadj4vrrrr.onion Hidden pkgsrc mirror: NetBSD packages for amd64, arm, earm, earmv6hf, earmv7hf, earmv7hfeb, sparc64, mipsel distfiles No

405 views • 13 slides
Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in

Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in

Make-up Lab: Osmosis in an Onion Cell This microscope slide is of red onion cells sitting in a bath of distilled water. It is viewed at medium power (100x). Draw these cells in the first circle on your lab paper. Label the cell walls

391 views • 4 slides
CRYPTDB:PROTECTING CONFIDENTIALITY WITH ENCRYPTED QUERY PROCESSING Why

CRYPTDB:PROTECTING CONFIDENTIALITY WITH ENCRYPTED QUERY PROCESSING Why

RALUCA ADA POPA, CATHERINE M. S. REDFIELD, NICKOLAI ZELDOVICH, AND HARI BALAKRISHNAN MIT CSAIL CRYPTDB:PROTECTING CONFIDENTIALITY WITH ENCRYPTED QUERY PROCESSING Why

1.45k views • 123 slides
encrypted data Raluca Ada Popa MIT Compromise of confidential data is prevalent Problem setup

encrypted data Raluca Ada Popa MIT Compromise of confidential data is prevalent Problem setup

? xd51db5 xe891a1 X9ce568 X32e1dc xab2356 xdd0135 x453a32 x63ab12 Building systems that compute on encrypted data Raluca Ada Popa MIT Compromise of confidential data is prevalent Problem setup server clients Secret Secret Secret

851 views • 53 slides

More recommend