C. Gulcu and G. Tsudik. Mixing e-mail with babel. In Symposium on Network and Distributed System Security, Feb. 96, pp. 2-1.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....used to make the inputs of each mix node bitwise unlinkable to its outputs. Further research into mix networks, has been divided between real time systems, primarily for web browsing, such as onion routing [12] webmixes [1] or the freedom network [3] and non real time systems such as babel [13], mixmaster [17] and the newer mixminion [6] Other issues have been the trade o# between real time guarantees and anonymity properties, proper metrics to quantify anonymity [22, 7] and the importance of cover tra#c to maintain anonymity. In this paper we present and discuss some proposals about ....

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996.

....PS M A SIGC , CERTC , CERT I PKP SIGP , Figure 2: Pseudonymized payment protocol: on line PS, one time pseudonym certi cate To hide the linking between C and P also towards outsiders, the channel between C and PS additionally needs to be encrypted. Also, trac anonymizers or MIXes ( 11] [6], 10] used on the C PS and C M channels can help to unlink the pseudonym request from the pseudonym use, and to hide the linking of C or P to a network address. These extensions apply to the di erent pseudonym server designs in this paper but are not discussed here. 2.3.2 Security Analysis We ....

....in certi cates was made for reasons of compatibility with the existing certi cate formats. It would be possible to remove also those pseudonyms from certi cates and use strictly anonymous certi cates. It should also further be investigated how to use trac anonymizers (such as [11] or MIXes ([6], 10] to provide unlinkability between the request for and the actual use of a pseudonym. 6 Conclusion In this paper, we have separated the notion of identity from liability, by suggesting that certi cates explicitly specify liabilities needed by the party relying on a digital signature. We ....

C. Gulcu and G. Tsudik, \Mixing e-mail with babel", 1996.

.... communication channels are Onion Routing[47] and Zero Knowledge Systems Freedom[18] We refer to David Martin s thesis for a comprehensive overview of anonymous channels in theory and practice[32] The design and implementation of an anonymous communication channel is an ongoing research topic [1, 6, 8, 9, 22, 24, 25, 28, 38, 41]. The first implementation of the Free Haven design will use the Cypherpunk and Mixmaster remailers as its anonymous channel. For design details, see [16] 3.9 Reputation System The reputation system in Free Haven is responsible for creating accountability. Accountability in a system so ....

.... document s availability is compromised before a specific targeted document s availability is compromised or how many servers must be compromised by an adversary for how long before the adversary can link a document and a publisher This modelling might follow from the work of Gulcu and Tsudik[22], Kesdogan, Egner, and Bschkes[28] and Berthold, Federrath, and Kohntopp[6] which apply statistical modelling to mix nets. Formal Definition of Anonymity: Closely related to the last point is the need to formalize the kinds of anonymity presented in section 2. By formally defining anonymity, ....

C. Gulcu and G. Tsudik. Mixing e-mail with Babel. In Proceedings of the ISOC Symposium on Network and Distributed System Security, pages 2--16, 1996.

.... or receivers for a given message [6] On the other hand, cascades are more vulnerable [3] to trickle attacks, where an attacker targeting a speci c message going into a mix can manipulate the batch of messages entering that mix so the only unknown message in the batch is the target message [8, 15]. MIX cascade research includes real time MIXes [18] and web MIXes [4] 2.2 Deployed Remailer Systems The rst widespread public implementations of MIXes were produced by the cypherpunks mailing list. These Type I anonymous remailers were inspired both by the problems surrounding the ....

....message pools, and other MIX features lacking in the cypherpunk remailers. Note that Mixmaster did not include reply functionality, so deployed remailer systems still use the less secure long term cypherpunk reply blocks. At about the same time, Gulcu and Tsudik introduced the Babel system [15], which also created a practical remailer design (although one that never saw widespread use) 2.3 Robustness Previous work primarily investigates the robustness of MIX nets in the context of a distributed MIX system [17] A MIX is considered robust if it survives the failure of any k of n ....

[Article contains additional citation context not shown here]

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996. <http://citeseer.nj.nec.com/2254.html>.

....the right modulus. This allows an adversary to search through a set of possible public keys to find the one which is the best fit for any ciphertext, even if OAEP or similar padding is used. In mixnets which provide reply blocks, the reply block is often treated as opaque(for example Babel [41]) and prepended to the message to be sent. This means that the message is available for inspection by each intermediate hop with no processing at each hop; for this reason the message is often encrypted with the public key of the recipient. The point of a reply block is to provide a chain of mix ....

....(and the novel) is that static structures are vulnerable to attack. Continually refreshing the Rewebber URL makes it harder for an adversary to gain information about the server to which it refers. B.4. 2 Babel Contemporary with Cotrell s Mixmaster is an effort by Gulcu and Tsudik called Babel [41]. Babel uses a modified version of PGP as its underlying encryption engine. This modified version does not include normal headers, which would include the identity of the receiver, the PGP version number, and other identifying information. The Babel paper defines quantities called the guess ....

C. Gulcu and G. Tsudik. Mixing e-mail with Babel. In Proceedings of the ISOC Symposium on Network and Distributed System Security, pages 2--16, 1996.

....PGP to encrypt and decrypt remailed messages. Later, Cottrell implemented the Mixmaster system [4] or Type II remailers, which added message padding, message pools, and other MIX features lacking in the cypherpunk remailers. At about the same time, Gulcu and Tsudik introduced the Babel system [5], which also created a practical remailer design (although one that never saw widespread use) 2.3 Remailer Statistics Levien s statistics pages [12] track both remailer capabilities (such as what kinds of encryption the remailer supports) and remailer up times, observed by pinging the machines ....

....proven that for Alice s claim to be accepted, N i must have received a message with a well formed (N i 1 ; M i 1 ) pair as the plaintext. Many MIX net protocols require MIXes to refuse to pass on a message if it is a replay a message the MIX had already received within a given time period (see [5] for a rationale) We prevent MIXes from losing reputation because of this behavior as follows. When a MIX receives a replayed message (using Hop receive as normal) it will already have a receipt from the previous time it We can assume that N i s public key is valid because it is chosen by N i ....

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996.

....hashes of the packets, or parts thereof, that have been processed in the past. The difference, as we will see, is that the state we require the mixes to keep in order to implement forward security needs to be kept secret since it will be part of the keying information. In traditional mix systems [19, 14, 13] the address of the next mix (AM ) and the key used to decrypt the payload to be sent (Smessage) are included in the asymmetrically encrypted header, under the public key of the mix (Pkn) Mn Mn : Smessage, AM , Pk , Message smessage In the case of [13] a special public hash of the ....

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996. http://citeseer. nj. nec. com/2254. html.

....design that protects against most known attacks. Keywords: anonymity, MIX net, peer to peer, remailer, nymserver, reply block 1 Introduction Chaum rst introduced anonymous remailer designs over 20 years ago [9] The research community has since introduced many new designs and proofs [1, 5, 19, 21 23, 34, 35], and discovered a variety of new attacks [4, 6, 7, 12, 29, 38] but the state of deployed remailers has changed remarkably little since Cottrell published his Mixmaster software [10, 32] in 1994. Part of the diculty in expanding the deployed remailer base is due to the liability involved in ....

.... or receivers for a given message [7] On the other hand, cascades are more vulnerable [3] to trickle attacks, where an attacker targeting a speci c message going into a MIX can manipulate the batch of messages entering that MIX so the only unknown message in the batch is the target message [10, 19]. MIX cascade research includes real time MIXes [22] and web MIXes [5] 2.2 Deployed Remailer Systems The rst widespread public implementations of MIXes were produced by the Cypherpunks mailing list. These Type I anonymous remailers were inspired both by the problems surrounding the ....

[Article contains additional citation context not shown here]

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996. <http://citeseer.nj.nec.com/2254.html>.

No context found.

C. Gulcu and G. Tsudik. Mixing e-mail with babel. In Symposium on Network and Distributed System Security, Feb. 96, pp. 2-1.

No context found.

C. Gulcu and G. Tsudik. Mixing e-mail with babel. In Symposium on Network and Distributed System Security, pages 2-16, 1996.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium (NDSS 96), pages 2--16. IEEE, February 1996.

No context found.

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Proc. of Network and Distributed Security Symposium - NDSS '96. IEEE, 1996.

No context found.

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Proc. of Network and Distributed Security Symposium - NDSS '96. IEEE, 1996.

No context found.

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium --- NDSS '96, pages 2--16, San Diego, California, February 1996. IEEE.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium --- NDSS '96, pages 2--16, San Diego, California, February 1996. IEEE.

No context found.

C. Gulcu and G. Tsudik. Mixing E-mail with BABEL. In Symposium on Network and Distributed Systems Security (NDSS '96), San Diego, California, February 1996. Internet Society. 134

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium (NDSS 96), pages 2--16. IEEE, February 1996.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Proceedings of the Network and Distributed Security Symposium - NDSS '96, pages 2--16. IEEE, February 1996.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium --- NDSS '96, pages 2--16, San Diego, California, February 1996. IEEE.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium (NDSS 96), pages 2--16. IEEE, February 1996.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing e-mail with BABEL. In Symposium on Network and Distributed System Security (NDSS'96), pages 2--16. IEEE, 1996.

No context found.

Gulcu, C., and Tsudik, G. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96 (1996), IEEE. http://citeseer.nj.nec.com/2254.html.

No context found.

C. Gulcu and G. Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium - NDSS '96. IEEE, 1996. <http://citeseer.nj.nec.com/2254.html>.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing e-mail with BABEL. In Symposium on Network and Distributed System Security (NDSS'96), pages 2--16. IEEE, 1996.

No context found.

Ceki Gulcu and Gene Tsudik. Mixing E-mail with Babel. In Network and Distributed Security Symposium (NDSS 96), pages 2-16. IEEE, February 1996.

First 50 documents

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC