Onion Routing with Replies
Kuhn, Christiane; Hofheinz, Dennis; Rupp, Andy; Strufe, Thorsten
Abstract (englisch):
Onion routing (OR) protocols are a crucial tool for providing anonymous internet communication. An OR protocol enables a user to anonymously send requests to a server. A fundamental problem of OR protocols is how to deal with replies: ideally, we would want the server to be able to send a reply back to the anonymous user without knowing or disclosing the user’s identity.
Existing OR protocols do allow for such replies, but do not provably protect the payload (i.e., message) of replies against manipulation. Kuhn et al. (IEEE S&P 2020) show that such manipulations can in fact be leveraged to break anonymity of the whole protocol.
In this work, we close this gap and provide the first framework and protocols for OR with protected replies. We define security in the sense of an ideal functionality in the universal composability model, and provide corresponding (less complex) game-based security notions for the individual properties.
We also provide two secure instantiations of our framework: one based on updatable encryption, and one based on succinct non-interactive arguments (SNARGs) to authenticate payloads both in requests and replies. ... mehr
Existing OR protocols do allow for such replies, but do not provably protect the payload (i.e., message) of replies against manipulation. Kuhn et al. (IEEE S&P 2020) show that such manipulations can in fact be leveraged to break anonymity of the whole protocol.
In this work, we close this gap and provide the first framework and protocols for OR with protected replies. We define security in the sense of an ideal functionality in the universal composability model, and provide corresponding (less complex) game-based security notions for the individual properties.
We also provide two secure instantiations of our framework: one based on updatable encryption, and one based on succinct non-interactive arguments (SNARGs) to authenticate payloads both in requests and replies. ... mehr
| Zugehörige Institution(en) am KIT | Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL) |
| Publikationstyp | Proceedingsbeitrag |
| Publikationsjahr | 2021 |
| Sprache | Englisch |
| Identifikator | ISBN: 978-3-030-92075-3 ISSN: 0302-9743 KITopen-ID: 1000141595 |
| HGF-Programm | 46.23.01 (POF IV, LK 01) Methods for Engineering Secure Systems |
| Erschienen in | Advances in Cryptology – ASIACRYPT 2021 – 27th International Conference on the Theory and Application of Cryptology and Information Security, Singapore, December 6–10, 2021, Proceedings, Part II. Ed.: M. Tibouchi |
| Veranstaltung | 27th International Conference on the Theory and Application of Cryptology and Information Security (ASIACRYPT 2021), Online, 06.12.2021 – 10.12.2021 |
| Verlag | Springer International Publishing |
| Seiten | 573–604 |
| Serie | Lecture Notes in Computer Science ; 13091 |
| Vorab online veröffentlicht am | 01.12.2021 |
| Schlagwörter | privacy, anonymity, updatable encryption, SNARGs |
| Nachgewiesen in | Scopus Dimensions |