online anonymity
play

Online Anonymity Andrew Lewman andrew@torproject.org June 8, 2010 - PowerPoint PPT Presentation

Nov 24, 2022 •220 likes •764 views

Online Anonymity Andrew Lewman andrew@torproject.org June 8, 2010 What is anonymity? Anonymity isnt cryptography Cryptography protects the contents in transit You still know who is talking to whom, how often, and how much data is

  1. Online Anonymity Andrew Lewman andrew@torproject.org June 8, 2010

  2. What is anonymity?

  3. Anonymity isn’t cryptography • Cryptography protects the contents in transit • You still know who is talking to whom, how often, and how much data is sent.

  4. Anonymity isn’t steganography Attacker can tell Alice is talking to someone, how often, and how much data is sent.

  5. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!”

  6. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!” • ”Promise you won’t look”

  7. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!” • ”Promise you won’t look” • ”Promise you won’t remember”

  8. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!” • ”Promise you won’t look” • ”Promise you won’t remember” • ”Promise you won’t tell”

  9. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!” • ”Promise you won’t look” • ”Promise you won’t remember” • ”Promise you won’t tell” • ”I didn’t write my name on it!”

  10. Anonymity isn’t just wishful thinking... • ”You can’t prove it was me!” • ”Promise you won’t look” • ”Promise you won’t remember” • ”Promise you won’t tell” • ”I didn’t write my name on it!” • ”Isn’t the Internet already anonymous?”

  11. ..since ”weak” isn’t anonymity. • ”You can’t prove it was me!” Proof is a very strong word. Statistical analysis allows suspicion to become certainty.

  12. ..since ”weak” isn’t anonymity. • ”You can’t prove it was me!” Proof is a very strong word. Statistical analysis allows suspicion to become certainty. • ”Promise you won’t look/remember/tell” Will other parties have the abilities and incentives to keep these promises?

  13. ..since ”weak” isn’t anonymity. • ”You can’t prove it was me!” Proof is a very strong word. Statistical analysis allows suspicion to become certainty. • ”Promise you won’t look/remember/tell” Will other parties have the abilities and incentives to keep these promises? • ”I didn’t write my name on it!” Not what we’re talking about.

  14. ..since ”weak” isn’t anonymity. • ”You can’t prove it was me!” Proof is a very strong word. Statistical analysis allows suspicion to become certainty. • ”Promise you won’t look/remember/tell” Will other parties have the abilities and incentives to keep these promises? • ”I didn’t write my name on it!” Not what we’re talking about. • ”Isn’t the Internet already anonymous?” Nope!

  15. Anonymous communication • People have to hide in a crowd of other people (”anonymity loves company”) • The goal of the system is to make all users look as similar as possible, to give a bigger crowd • Hide who is communicating with whom • Layered encryption and random delays hide correlation between input traffic and output traffic

  16. Low versus High-latency anonymous communication systems • Tor is not the first system; ZKS, mixmaster, single-hop proxies, Crowds, Java Anon Proxy. • Low-latency systems are vulnerable to end-to-end correlation attacks. • High-latency systems are more resistant to end-to-end correlation attacks, but by definition, less interactive.

  17. Low-latency systems are generally more attractive to today’s user • Interactive apps: web, instant messaging, VOIP, ssh, X11, cifs/nfs, video streaming (millions of users) • Multi-hour delays: email, nntp, blog posting? (tens of thousands of users?)

  18. Low-latency systems are generally more attractive to today’s user • Interactive apps: web, instant messaging, VOIP, ssh, X11, cifs/nfs, video streaming (millions of users) • Multi-hour delays: email, nntp, blog posting? (tens of thousands of users?) • And if anonymity loves company...

  19. Who wants anonymity online? • Normal people • Law Enforcement • Human Rights Activists • Business Execs • Militaries • Abuse Victims

  20. What is Tor? • online anonymity, circumvention software and network • open source, free software (BSD 3-clause & GPLv2 licenses)

  21. What is Tor? • online anonymity, circumvention software and network • open source, free software (BSD 3-clause & GPLv2 licenses) • active research environment: Rice, UMN, NSF, NRL, Drexel, Waterloo, Cambridge UK, Bamberg Germany, Boston U, Harvard, MIT, RPI, GaTech

  22. What is Tor? • online anonymity, circumvention software and network • open source, free software (BSD 3-clause & GPLv2 licenses) • active research environment: Rice, UMN, NSF, NRL, Drexel, Waterloo, Cambridge UK, Bamberg Germany, Boston U, Harvard, MIT, RPI, GaTech • increasingly diverse toolset: Tor, Torbutton, Tor Browser Bundle, TorVM, Incognito LiveCD, Tor Weather, Tor auto-responder, Secure Updater, Orbot, TorFox, Torora, Portable Tor, Tor Check, Arm, Nymble, Tor Control, Tor Wall

  23. Who is The Tor Project, Inc? The 501(c)(3) non-profit organization dedicated to the research and development of tools for online anonymity and privacy

  24. Tor is a low-latency anonymity system • Based on technology developed in the Onion Routing project

  25. Tor is a low-latency anonymity system • Based on technology developed in the Onion Routing project • Privacy by design, not by policy (no data collected)

  26. Tor is a low-latency anonymity system • Based on technology developed in the Onion Routing project • Privacy by design, not by policy (no data collected) • Commonly used for web browsing and instant messaging (works for any TCP traffic)

  27. Tor is a low-latency anonymity system • Based on technology developed in the Onion Routing project • Privacy by design, not by policy (no data collected) • Commonly used for web browsing and instant messaging (works for any TCP traffic) • Originally built as a pure anonymity system (hides who is talking to whom)

  28. Tor is a low-latency anonymity system • Based on technology developed in the Onion Routing project • Privacy by design, not by policy (no data collected) • Commonly used for web browsing and instant messaging (works for any TCP traffic) • Originally built as a pure anonymity system (hides who is talking to whom) • Now designed to resist censorship too (hides whether someone is using the system at all)

  29. Tor code stats stats from http://www.ohloh.net/p/tor

  30. How many people use Tor? No idea. It’s an anonymity system.

  31. How many people use Tor? No idea. It’s an anonymity system. http://metrics.torproject.org/ for an idea.

  32. estimated 500,000 daily users

  33. No really, how many people use Tor?

  34. Tor hides communication patterns by relaying data through volunteer servers Tor user Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Network Web server Diagram: Robert Watson

  35. Tor hides communication patterns by relaying data through volunteer servers Entry node Middle node Exit node Tor user Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Network Web server Diagram: Robert Watson

  36. Tor hides communication patterns by relaying data through volunteer servers Entry node Middle node Exit node Tor user Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Node Tor Network Encrypted tunnel Web server Unencrypted TCP Diagram: Robert Watson

  37. Tor hidden services allow censorship resistant services

  38. How is Tor different from other systems?

  39. How is Tor different from other systems?

  40. How is Tor different from other systems?

  41. How to get involved https://torproject.org/volunteer

  42. Limitations of anonymous communication • There is something for everyone to like, and something for everyone to dislike, going on with online anonymity systems • Bad people do use them to do bad things (for many different definitions of bad people) • It is impossible to block bad uses, even if we could come up with a common definition of bad content • The systems are not perfect, so it is possible some people will be caught

  43. Freedom of speech and anonymity United States Constitution: 1st Amendment Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the Government for a redress of grievances. McIntyre v. Ohio Elections Commission Protections for anonymous speech are vital to democratic discourse. Allowing dissenters to shield their identities frees them to express critical, minority views . . . Anonymity is a shield from the tyranny of the majority . . . It thus exemplifies the purpose behind the Bill of Rights, and of the First Amendment in particular

  44. Twitter in Iran: Good. From http://www.time.com/time/world/article/0,8599,1905125,00.html

  45. Twitter in USA: Bad. from http://gothamist.com/2009/10/05/fbi raids queens home in g20 protes.php

  46. Internet architecture allows surveillance Diagram: China Internet Network Information Center

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Applications for Measurement: Improving Anonymity Online Rishab Nithyanand | Rachee Singh |

Applications for Measurement: Improving Anonymity Online Rishab Nithyanand | Rachee Singh |

Applications for Measurement: Improving Anonymity Online Rishab Nithyanand | Rachee Singh | Shinyoung Cho | Phillipa Gill Stony Brook University 1 Anonymity on the Internet Tor Network 2 Anonymity on the Internet Does not know the source

261 views • 15 slides
Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing

Cryptocurrency Technologies Bitcoin and Anonymity Bitcoin and Anonymity Anonymity Basics How to de-anonymize Bitcoin Mixing Decentralized Mixing Zerocoin and Zerocash Tor and the Silk Road Bitcoin and Anonymity

524 views • 39 slides
Measures of Anonymity/Privacy: k-Anonymity, L-Diversity,

Measures of Anonymity/Privacy: k-Anonymity, L-Diversity,

Measures of Anonymity/Privacy: k-Anonymity, L-Diversity, t-Closeness CompSci 590.03 Instructor: Ashwin Machanavajjhala Lecture 4 : 590.03 Fall 12 1

647 views • 61 slides
but quite a lot is. Coordination among users can help with anonymity. Debajyoti Das 1 Sebastian

but quite a lot is. Coordination among users can help with anonymity. Debajyoti Das 1 Sebastian

Not all is lost for anonymity but quite a lot is. Coordination among users can help with anonymity. Debajyoti Das 1 Sebastian Meiser 2 Esfandiar Mohammadi 3 Aniket Kate 1 1 Purdue University 2 Visa Research 3 ETH Zurich 1 Sender Anonymity

551 views • 44 slides
Anonymity in Bitcoin Tumbler/Mixer Oct 9, 2019 Anonymity and Pseudonymity anonymous =

Anonymity in Bitcoin Tumbler/Mixer Oct 9, 2019 Anonymity and Pseudonymity anonymous =

Anonymity in Bitcoin Tumbler/Mixer Oct 9, 2019 Anonymity and Pseudonymity anonymous = Nameless, unidentifiable pseudonymous = Fake name, still traceable Tracing Bitcoin transactions Normal redeem script: Provide public key pk and proof

438 views • 33 slides
Anonymity Jiayi Fu What is Anonymity - Describe the situation in which someone's name is not

Anonymity Jiayi Fu What is Anonymity - Describe the situation in which someone's name is not

Anonymity Jiayi Fu What is Anonymity - Describe the situation in which someone's name is not given or known - Anonymity != Privacy != Security - Anonymity: they can see what you do, but not who you are - Privacy: they can see

379 views • 33 slides
Lecture 24 Anonymity and Privacy Stephen Checkoway University of Illinois at Chicago CS 487

Lecture 24 Anonymity and Privacy Stephen Checkoway University of Illinois at Chicago CS 487

Lecture 24 Anonymity and Privacy Stephen Checkoway University of Illinois at Chicago CS 487 Fall 2017 Slides based on Miller and Baileys ECE 422 Anonymity Anonymity: Concealing your identity In the context of the Internet, we

860 views • 61 slides
Tor and (un)provable privacy Roger Dingledine The Tor Project https://torproject.org/ 1

Tor and (un)provable privacy Roger Dingledine The Tor Project https://torproject.org/ 1

Tor and (un)provable privacy Roger Dingledine The Tor Project https://torproject.org/ 1 Today's plan 0) Crash course on Tor 1) Anonymity attacks 2) Blocking-resistance 2 What is Tor? Online anonymity 1) open source software, 2)

663 views • 52 slides
11-830 Computational Ethics for NLP Lecture 11: Privacy and Anonymity Privacy and Anonymity

11-830 Computational Ethics for NLP Lecture 11: Privacy and Anonymity Privacy and Anonymity

11-830 Computational Ethics for NLP Lecture 11: Privacy and Anonymity Privacy and Anonymity Being on-line without giving up everything about you Ensuring collected data doesnt reveal its users data Privacy in Structured Data:

766 views • 49 slides
Anonymity in Cryptocurrencies Foteini Baldimtsi Bitcoin Anonymity? Satoshi Nakamoto, 2008

Anonymity in Cryptocurrencies Foteini Baldimtsi Bitcoin Anonymity? Satoshi Nakamoto, 2008

Anonymity in Cryptocurrencies Foteini Baldimtsi Bitcoin Anonymity? Satoshi Nakamoto, 2008 Bitcoin is only pseudonymous Public Key Address 133GT5661q8RuSKrrv8q2Pb4RwS 146KL5461d8KuSPxvv8q2Nd6K2q Posted on the ... Blockchain Alice

821 views • 40 slides
Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti

Slicing the licing the Onion: Onion: Anonymity Without PKI Anonymity Without PKI Sachin Katti Dina Katabi & Katya Puchala State of the art: Onio Onion Rout n Routing over P2P ing over P2P n Routing over P2P ing over P2P Bob Onion

705 views • 43 slides
Identity and Identity and anonymity anonymity Engineering & Public Policy Lorrie Faith

Identity and Identity and anonymity anonymity Engineering & Public Policy Lorrie Faith

CyLab Identity and Identity and anonymity anonymity Engineering & Public Policy Lorrie Faith Cranor October 29, 2013 y & c S a e v c i u r P r i t e y l b L a a s b U o 8-533 / 8-733 / 19-608 / 95-818:

467 views • 46 slides
for anonymity, but quite a lot is. Debajyoti Das 1 Sebastian Meiser 2 Esfandiar Mohammadi 3 Aniket

for anonymity, but quite a lot is. Debajyoti Das 1 Sebastian Meiser 2 Esfandiar Mohammadi 3 Aniket

Anonymity Trilemma not all is lost for anonymity, but quite a lot is. Debajyoti Das 1 Sebastian Meiser 2 Esfandiar Mohammadi 3 Aniket Kate 1 1 Purdue University 2 Visa Research 3 Universitaet zu Luebeck Anonymous Communication (AC) Networks

449 views • 21 slides
Free Software, Free Internet, Anonymity & Tor Andrew Lewman andrew@torproject.org 24 Feb

Free Software, Free Internet, Anonymity & Tor Andrew Lewman andrew@torproject.org 24 Feb

Free Software, Free Internet, Anonymity & Tor Andrew Lewman andrew@torproject.org 24 Feb 2011 What is anonymity? Anonymity isnt cryptography Cryptography protects the contents in transit You still know who is talking to whom, how

926 views • 51 slides
Anonymity with Identity Escrow Aybek Mukhamedov and Mark Ryan The University of Birmingham March

Anonymity with Identity Escrow Aybek Mukhamedov and Mark Ryan The University of Birmingham March

Anonymity with Identity Escrow Aybek Mukhamedov and Mark Ryan The University of Birmingham March 30, 2006 Outline Anonymity 1 Anonymity with identity escrow 2 Marshall and Molina-Jiminez protocol 3 Our protocol 4 Verification in

567 views • 20 slides
Crowds: Anonymity for Web Transactions Paper by: Michael K. Reiter & Aviel D. Rubin of

Crowds: Anonymity for Web Transactions Paper by: Michael K. Reiter & Aviel D. Rubin of

Crowds: Anonymity for Web Transactions Paper by: Michael K. Reiter & Aviel D. Rubin of AT&T Labs (August, 1997) Presenter: Craig Bergstrom Overview The Problem At Hand How Crowds Works Levels and Types of Anonymity &

326 views • 19 slides
Brussels Regional Development Agency Three complementary missions to build the city of tomorrow

Brussels Regional Development Agency Three complementary missions to build the city of tomorrow

Brussels Regional Development Agency Three complementary missions to build the city of tomorrow Tivoli GreenCity economic part cityfab 1 Laeken, rue Dieudonn Lefvre, Bt GREENBIZZ Module C5 Module de 550 m amnager en

825 views • 30 slides
2020 half-year results 27 July 2020 2 0 2 0 h a l f - y e a r r e s u l t s 1

2020 half-year results 27 July 2020 2 0 2 0 h a l f - y e a r r e s u l t s 1

2020 half-year results 27 July 2020 2 0 2 0 h a l f - y e a r r e s u l t s 1 Sommaire 1 Recent update 3 2 Strategic positioning 5 3 Operational performance 15 4 Financial results 26 5 Outlook 34 6 Appendix

647 views • 42 slides
Protective Clothing & Additional Products and Services David Welcher UniTech Services Group

Protective Clothing & Additional Products and Services David Welcher UniTech Services Group

Protective Clothing & Additional Products and Services David Welcher UniTech Services Group 138 Longmeadow Street Longmeadow, MA 01106 (413)543-6911 www.UniTechUS.com Thanks for the Invitation to your Conference! Organization

445 views • 21 slides
How Norway communicate the message: Wetland information centers and a CEPA- action plan for

How Norway communicate the message: Wetland information centers and a CEPA- action plan for

How Norway communicate the message: Wetland information centers and a CEPA- action plan for wetlands Maja Stade Aarns January 26th, Helsinki NorBalWet CEPA workshop Two relevant CEPA activities in Norway Wetland information centers

469 views • 19 slides
BERLIN 2019 Friday 22 nd February Wednesday 27 th February 2019 BERLIN 2019 INFORMATION

BERLIN 2019 Friday 22 nd February Wednesday 27 th February 2019 BERLIN 2019 INFORMATION

Please sign in! BERLIN 2019 Friday 22 nd February Wednesday 27 th February 2019 BERLIN 2019 INFORMATION EVENING AGENDA Welcome & the purpose of our visit Our itinerary & activities Our expectations Essential

325 views • 29 slides
UDFS v 0.3 (Iteration 3) Meeting : TCCG Location: Frankfurt Date: 18 July 2018 Version: 0.1

UDFS v 0.3 (Iteration 3) Meeting : TCCG Location: Frankfurt Date: 18 July 2018 Version: 0.1

UDFS v 0.3 (Iteration 3) Meeting : TCCG Location: Frankfurt Date: 18 July 2018 Version: 0.1 Delivery of UDFS v 0.3 (iteration 3) Content UDFS CLM and UDFS RTGS v 0.3 (as clean version and as version with revision marks) + Re drafted,

427 views • 8 slides
Status of Sustainable Groundwater July 6, 2020 Management Act Implementation Technical

Status of Sustainable Groundwater July 6, 2020 Management Act Implementation Technical

Status of Sustainable Groundwater July 6, 2020 Management Act Implementation Technical Draft Recent Key Accomplishments Hydrogeological Conceptual Model Potential Groundwater Dependent Data Review and Assessment Tech

364 views • 11 slides
Bond Oversight Committee Meeting Key Project Status Updates * April June 2015 * All financial

Bond Oversight Committee Meeting Key Project Status Updates * April June 2015 * All financial

Bond Oversight Committee Meeting Key Project Status Updates * April June 2015 * All financial values based on 4/30/2015 data. SFMTA Strategic Plan Goals 2018 2012 Bike/Walk 21% Auto Transit/ Auto Transit 62% Bike/Walk 50% 17% 50%

641 views • 31 slides

More recommend