面向端到端溯源攻击对手的Tor安全性模型

doi:10.19678/j.issn.1000-3428.0059447

计算机工程 ›› 2021, Vol. 47 ›› Issue (11): 136-143. doi: 10.19678/j.issn.1000-3428.0059447

面向端到端溯源攻击对手的Tor安全性模型

王琦, 曹卫权, 梁杰, 李赟, 吴杰

盲信号处理国家级重点实验室, 成都 610041

收稿日期:2020-09-07 修回日期:2020-10-31 发布日期:2020-11-19
作者简介:王琦(1990-),男,硕士研究生,主研方向为匿名通信安全;曹卫权,助理研究员、博士;梁杰,硕士;李赟,助理研究员、博士;吴杰,高级工程师、博士。
基金资助:
国防科技重点实验室基金（614241303071913）。

Tor Security Model for End-to-End Source Tracking Attack Adversary

WANG Qi, CAO Weiquan, LIANG Jie, LI Yun, WU Jie

National Key Laboratory of Science and Technology on Blind Signal Processing, Chengdu 610041, China

Received:2020-09-07 Revised:2020-10-31 Published:2020-11-19

摘要/Abstract

摘要： Tor匿名通信系统在全球范围内被广泛部署与使用，但其抵御溯源攻击的能力有待进一步建模分析。为精确衡量Tor用户在端到端溯源攻击下的安全性，综合Tor节点选择算法、用户使用模式、溯源攻击对手能力等要素，建立针对端到端溯源攻击对手的Tor安全性模型。经实验验证与分析结果表明，该模型可在统计意义下较精确计算对手捕获通信链路的概率及次数，以此衡量不同端到端溯源攻击对手对用户安全性的破坏程度。

关键词: 洋葱路由器, 端到端溯源攻击对手, 安全性模型, 节点选择算法, 用户安全性

Abstract: The Tor anonymous communication system is deployed and used globally,but its ability to resist source tracking attacks needs further modeling for analysis.In order to measure the security of Tor users under end-to-end source tracking attacks,a Tor security model is proposed,which considers multiple factors such as Tor node selection algorithm,user usage patterns and the ability of source tracking attack adversaries.The results of experimental verification and effectiveness analysis show that the proposed model can accurately calculate the probability and number of times that the attack adversaries capture the communication link.On this basis,it can measure the degree of damage to user security by different end-to-end source attack adversaries.

Key words: The onion router(Tor), end-to-end source tracking attack adversary, security model, node selection algorithm, user security

中图分类号:

TP393.08

王琦, 曹卫权, 梁杰, 李赟, 吴杰. 面向端到端溯源攻击对手的Tor安全性模型[J]. 计算机工程, 2021, 47(11): 136-143.

WANG Qi, CAO Weiquan, LIANG Jie, LI Yun, WU Jie. Tor Security Model for End-to-End Source Tracking Attack Adversary[J]. Computer Engineering, 2021, 47(11): 136-143.

http://www.ecice06.com/CN/Y2021/V47/I11/136

图/表 18

20211113144137

20211113144140

20211113144142

20211113144145

20211113144148

20211113144151

20211113144154

20211113144157

20211113144200

20211113144203

20211113144206

20211113144209

20211113144212

20211113144216

20211113144220

20211113144223

20211113144227

20211113144230

参考文献

[1] DINGLEDINE R,MATHEWSON N,SYVERSON P.Tor:the second-generation onion router[C]//Proceedings of the 13th USENIX Security Symposium.San Diego,USA:USENIX Press,2004:303-320.
[2] Tor Project,Inc.Tor metrics portal[EB/OL].[2020-08-04].https://github.com/torproject.
[3] 马彦兵.基于洋葱网络的流量确认攻击及其防御技术研究[D].北京:北京邮电大学,2018. MA Y B.Research on traffic confirmation attack and defense based on tor network[D].Beijing:Beijing University of Posts and Telecommunications,2018.(in Chinese)
[4] CHAUM D.Untraceable electronic mail,return addresses,and digital pseudonyms[J].Communications of the ACM,1981,24(2):84-90.
[5] 赵梦瑶,李晓宇.基于洋葱路由的双向匿名秘密通信协议[J].计算机科学,2019,46(4):164-171. ZHAO M Y,LI X Y.Bidirectional anonymous secret communication protocol based on onion routing[J].Computer Science,2019,46(4):164-171.(in Chinese)
[6] MURDOCH S J,DANEZIS G.Low-cost traffic analysis of Tor[C]//Proceedings of 2005 IEEE Symposium on Security and Privacy.Washington D.C.,USA:IEEE Press,2005:183-195.
[7] CORRIGAN-GIBBS H,FORD B.Dissent:accountable anonymous group messaging[C]//Proceedings of the 17th ACM Conference on Computer and Communications Security.New York,USA:ACM Press,2010:340-350.
[8] LAPERDRIX P,RUDAMETKIN W,BAUDRY B.Beauty and the beast:diverting modern web browsers to build unique browser fingerprints[C]//Proceedings of 2016 IEEE Symposium on Security and Privacy.Washington D.C.,USA:IEEE Press,2016:878-894.
[9] ERDIN E,ZACHOR C,GUNES M H.How to find hidden users:a survey of attacks on anonymity networks[J].IEEE Communications Surveys & Tutorials,2015,17(4):2296-2316.
[10] JOHNSON A,WACEK C,JANSEN R,et al.Users get routed:traffic correlation on tor by realistic adversaries[C]//Proceedings of 2013 ACM SIGSAC Conference on Computer & Communications Security.New York,USA:ACM Press,2013:337-348.
[11] ABBOTT T G,LAI K J,LIEBERMAN M R,et al.Browser-based attacks on Tor[C]//Proceedings of the 7th International Conference on Privacy Enhancing Technologies.Berlin,Germany:Springer,2007:184-199.
[12] RYBCZYNSKA M.A round-based cover traffic algorithm for anonymity systems[M]//CABALLE S,XHAFA F,ABRAHAM A.Intelligent networking,collaborative systems and applications.Berlin,Germany:Springer,2009:257-280.
[13] DIAZ C,SEYS S,CLAESSENS J,et al.Towards measuring anonymity[C]//Proceedings of International Workshop on Privacy Enhancing Technologies.Berlin,Germany:Springer,2002:54-68.
[14] HAMEL A,GREGOIRE J C,GOLDBERG I.The misentropists:new approaches to measures in Tor:2011-18[R].Waterloo,Canada:University of Waterloo,2011.
[15] ELAHI T,BAUER K,ALSABAH M,et al.Changing of the guards:a framework for understanding and improving entry guard selection in Tor[C]//Proceedings of 2012 ACM Workshop on Privacy in the Electronic Society.New York,USA:ACM Press,2012:43-54.
[16] WRIGHT M K,ADLER M,LEVINE B N,et al.The predecessor attack:an analysis of a threat to anonymous communications systems[J].ACM Transactions on Information and System Security,2004,4(7):489-522.
[17] JOHNSON A,WACEK C,JANSEN R,et al.Users get routed:traffic correlation on Tor by realistic adversaries[C]//Proceedings of 2013 ACM SIGSAC Conference on Computer & Communications Security.New York,USA:ACM Press,2013:337-348.
[18] TorPS.TorPS:the Tor path simulator[EB/OL].[2020-08-04].http://torps.github.io.
[19] SYVERSON P,TSUDIK G,REED M,et al.Towards an analysis of onion routing security[EB/OL].[2020-08-04].https://www.baidu.com/link?url=B-yIlHdTcSlXgNB8GG2h2lECN8I7iKQgetRvEpstg4tZfo1rVfLNByG-28xpYj4VUm3Rz1IfSdhdpF3jAojqrK5tfMXinG40ifilh4E2dlW&wd=&eqid=de340189000bf51700000004611b1e3e.
[20] WAN G,JOHNSON A,WAILS R,et al.Guard placement attacks on path selection algorithms for Tor[J].Proceedings on Privacy Enhancing Technologies,2019(4):272-291.

选择文件类型/文献管理软件名称

选择包含的内容

面向端到端溯源攻击对手的Tor安全性模型

Tor Security Model for End-to-End Source Tracking Attack Adversary

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 18

参考文献

相关文章 2

编辑推荐

Metrics

本文评价

[1]	何海亮, 黄道颖, 张安琳, 李健勇, 李建春. 两段式P2P流媒体节点选择算法?[J]. 计算机工程, 2011, 37(20): 63-65.
[2]	汤光明;蒋小标;王亚弟. 信息隐藏理论安全性研究[J]. 计算机工程, 2009, 35(8): 192-194.

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

面向端到端溯源攻击对手的Tor安全性模型

Tor Security Model for End-to-End Source Tracking Attack Adversary

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 18

参考文献

相关文章 2

编辑推荐

Metrics

本文评价