eprintid: 1469540
rev_number: 34
eprint_status: archive
userid: 608
dir: disk0/01/46/95/40
datestamp: 2015-10-14 10:28:08
lastmod: 2021-11-16 23:07:45
status_changed: 2015-10-14 10:28:08
type: article
metadata_visibility: show
item_issues_count: 0
creators_name: Danezis, G
creators_name: Hayes, J
title: Guard Sets for Onion Routing
ispublished: pub
divisions: UCL
divisions: B04
divisions: C05
divisions: F48
note: © Jamie Hayes et al.. This work is licensed under the Creative Commons Attribution-NonCommercial-NoDerivatives 3.0 License. http://creativecommons.org/licenses/by-nc-nd/3.0/
abstract: “Entry” guards protect the Tor onion routing system from variants of the “predecessor” attack, that would allow an adversary with control of a fraction of routers to eventually de-anonymize some users. Research has however shown the three guard scheme has drawbacks and Dingledine et al. proposed in 2014 for each user to have a single long-term guard. We first show that such a guard selection strategy would be optimal if the Tor network was failure-free and static. However under realistic failure conditions the one guard proposal still suffers from the classic fingerprinting attacks, uniquely identifying users. Furthermore, under dynamic network conditions using single guards offer smaller anonymity sets to users of fresh guards. We propose and analyze an alternative guard selection scheme by way of grouping guards together to form shared guard sets. We compare the security and performance of guard sets with the three guard scheme and the one guard proposal. We show guard sets do provide increased resistance to a number of attacks, while foreseeing no significant degradation in performance or bandwidth utilization.
date: 2015-06-22
publisher: De Gruyter
official_url: http://dx.doi.org/10.1515/popets-2015-0017
vfaculties: VENG
oa_status: green
full_text_type: pub
language: eng
primo: open
primo_central: open_green
article_type_text: Article
verified: verified_manual
elements_source: Manually entered
elements_id: 1039990
doi: 10.1515/popets-2015-0017
lyricists_name: Danezis, Georges
lyricists_name: Hayes, James
lyricists_id: GDANE23
lyricists_id: JHAYE32
full_text_status: public
publication: Guard Sets for Onion Routing
volume: 2015
number: 2
pagerange: 65-80
pages: 15
issn: 2299-0984
citation:        Danezis, G;    Hayes, J;      (2015)    Guard Sets for Onion Routing.                   Guard Sets for Onion Routing , 2015  (2)   pp. 65-80.    10.1515/popets-2015-0017 <https://doi.org/10.1515/popets-2015-0017>.       Green open access   
 
document_url: https://discovery.ucl.ac.uk/id/eprint/1469540/1/popets15-guardsets%283%29.pdf