Robustness Guarantees for Anonymity

Gilles Barthe; Alejandro Hevia; Zhengqin Luo; Tamara Rezk; Bogdan Warinschi

Robustness Guarantees for Anonymity

Gilles Barthe, Alejandro Hevia, Zhengqin Luo, Tamara Rezk, Bogdan Warinschi

Cryptography and Information Security

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

3 Citations (Scopus)

Abstract

Anonymous communication protocols must achieve two seemingly contradictory goals: {\em privacy} (informally, they must guarantee the anonymity of the parties that send/receive information), and {\em robustness} (informally, they must ensure that the messages are not tampered). However, the long line of research that defines and analyzes the security of such mechanisms focuses almost exclusively on the former property and ignores the latter. In this paper, we initiate a rigorous study of robustness properties for anonymity protocols. We identify and formally define, using the style of modern cryptography, two related but distinct flavors of robustness. Our definitions are general ({\it e.g.} they strictly generalize the few existent notions for particular protocols) and flexible ({\it e.g.} they can be easily adapted to purely combinatorial/probabilistic mechanisms). We demonstrate the use of our definitions through the analysis of several anonymity mechanisms (Crowds, broadcast-based mix-nets, DC-nets, Tor). Notably, we analyze the robustness of a protocol by Golle and Juels for the dining cryptographers problem, identify a robustness-related weakness of the protocol, and propose and analyze a stronger version.

Translated title of the contribution	Robustness Guarantees for Anonymity
Original language	English
Title of host publication	IEEE Computer Security Foundations Symposium - CSF 2010
Publisher	IEEE Computer Society
Pages	91-106
Volume	-
Publication status	Published - 2010

Bibliographical note

Other page information: 91-106
Conference Proceedings/Title of Journal: 23rd IEEE Computer Security Foundations Symposium - CSF 2010
Other identifier: 2001235

Access to Document

http://www.cs.bris.ac.uk/Publications/pub_master.jsp?id=2001235

Handle.net

Persistent link

Cite this

@inproceedings{0607b10876d540f38c77e12e75e6c092,

title = "Robustness Guarantees for Anonymity",

abstract = "Anonymous communication protocols must achieve two seemingly contradictory goals: \{\textbackslash{}em privacy\} (informally, they must guarantee the anonymity of the parties that send/receive information), and \{\textbackslash{}em robustness\} (informally, they must ensure that the messages are not tampered). However, the long line of research that defines and analyzes the security of such mechanisms focuses almost exclusively on the former property and ignores the latter. In this paper, we initiate a rigorous study of robustness properties for anonymity protocols. We identify and formally define, using the style of modern cryptography, two related but distinct flavors of robustness. Our definitions are general (\{\textbackslash{}it e.g.\} they strictly generalize the few existent notions for particular protocols) and flexible (\{\textbackslash{}it e.g.\} they can be easily adapted to purely combinatorial/probabilistic mechanisms). We demonstrate the use of our definitions through the analysis of several anonymity mechanisms (Crowds, broadcast-based mix-nets, DC-nets, Tor). Notably, we analyze the robustness of a protocol by Golle and Juels for the dining cryptographers problem, identify a robustness-related weakness of the protocol, and propose and analyze a stronger version. ",

author = "Gilles Barthe and Alejandro Hevia and Zhengqin Luo and Tamara Rezk and Bogdan Warinschi",

note = "Other page information: 91-106 Conference Proceedings/Title of Journal: 23rd IEEE Computer Security Foundations Symposium - CSF 2010 Other identifier: 2001235",

year = "2010",

language = "English",

volume = "-",

pages = "91--106",

booktitle = "IEEE Computer Security Foundations Symposium - CSF 2010",

publisher = "IEEE Computer Society",

address = "United States",

}

TY - GEN

T1 - Robustness Guarantees for Anonymity

AU - Barthe, Gilles

AU - Hevia, Alejandro

AU - Luo, Zhengqin

AU - Rezk, Tamara

AU - Warinschi, Bogdan

N1 - Other page information: 91-106 Conference Proceedings/Title of Journal: 23rd IEEE Computer Security Foundations Symposium - CSF 2010 Other identifier: 2001235

PY - 2010

Y1 - 2010

N2 - Anonymous communication protocols must achieve two seemingly contradictory goals: {\em privacy} (informally, they must guarantee the anonymity of the parties that send/receive information), and {\em robustness} (informally, they must ensure that the messages are not tampered). However, the long line of research that defines and analyzes the security of such mechanisms focuses almost exclusively on the former property and ignores the latter. In this paper, we initiate a rigorous study of robustness properties for anonymity protocols. We identify and formally define, using the style of modern cryptography, two related but distinct flavors of robustness. Our definitions are general ({\it e.g.} they strictly generalize the few existent notions for particular protocols) and flexible ({\it e.g.} they can be easily adapted to purely combinatorial/probabilistic mechanisms). We demonstrate the use of our definitions through the analysis of several anonymity mechanisms (Crowds, broadcast-based mix-nets, DC-nets, Tor). Notably, we analyze the robustness of a protocol by Golle and Juels for the dining cryptographers problem, identify a robustness-related weakness of the protocol, and propose and analyze a stronger version.

AB - Anonymous communication protocols must achieve two seemingly contradictory goals: {\em privacy} (informally, they must guarantee the anonymity of the parties that send/receive information), and {\em robustness} (informally, they must ensure that the messages are not tampered). However, the long line of research that defines and analyzes the security of such mechanisms focuses almost exclusively on the former property and ignores the latter. In this paper, we initiate a rigorous study of robustness properties for anonymity protocols. We identify and formally define, using the style of modern cryptography, two related but distinct flavors of robustness. Our definitions are general ({\it e.g.} they strictly generalize the few existent notions for particular protocols) and flexible ({\it e.g.} they can be easily adapted to purely combinatorial/probabilistic mechanisms). We demonstrate the use of our definitions through the analysis of several anonymity mechanisms (Crowds, broadcast-based mix-nets, DC-nets, Tor). Notably, we analyze the robustness of a protocol by Golle and Juels for the dining cryptographers problem, identify a robustness-related weakness of the protocol, and propose and analyze a stronger version.

M3 - Conference Contribution (Conference Proceeding)

VL - -

SP - 91

EP - 106

BT - IEEE Computer Security Foundations Symposium - CSF 2010

PB - IEEE Computer Society

ER -

Robustness Guarantees for Anonymity

Abstract

Bibliographical note

Access to Document

Handle.net

Fingerprint

Cite this