Spy vs. Spy: Rumor Source Obfuscation

Similar documents
Private & Anonymous Communication. Peter Kairouz ECE Department University of Illinois at Urbana-Champaign

Anonymous Messaging. Giulia Fanti and Peter Kairouz. Advised by Professors Sewoong Oh, Kannan Ramchandran, and Pramod Viswanath

Spy vs. spy: Anonymous messaging over networks. Giulia Fanti, Peter Kairouz, Sewoong Oh, Kannan Ramchandran, Pramod Viswanath

Metadata-Conscious Anonymous Messaging

Dandelion: Privacy-Preserving Transaction Propagation in Bitcoin s P2P Network

arxiv: v1 [cs.cr] 28 May 2018

Learning Network Graph of SIR Epidemic Cascades Using Minimal Hitting Set based Approach

Quiz 8 May 21, 2015 Computer Engineering 80N

Information Leak in the Chord Lookup Protocol

Analyzing Tor s Anonymity with Machine Learning. Sanjit Bhat, David Lu May 21 st, 2017 Mentor: Albert Kwon

Supplementary file for SybilDefender: A Defense Mechanism for Sybil Attacks in Large Social Networks

How Alice and Bob meet if they don t like onions

Making Gnutella-like P2P Systems Scalable

Unit 8 Peer-to-Peer Networking

A SIMPLE INTRODUCTION TO TOR

0x1A Great Papers in Computer Security

Anonymity. Christian Grothoff.

Pufferfish: A Semantic Approach to Customizable Privacy

Introduction to Traffic Analysis. George Danezis University of Cambridge, Computer Laboratory

Securing Chord for ShadowWalker. Nandit Tiku Department of Computer Science University of Illinois at Urbana-Champaign

Fast Inbound Top- K Query for Random Walk with Restart

CS 134 Winter Privacy and Anonymity

Interconnection Networks: Topology. Prof. Natalie Enright Jerger

Detecting Denial of Service Attacks in Tor

Karaoke. Distributed Private Messaging Immune to Passive Traffic Analysis. David Lazar, Yossi Gilad, Nickolai Zeldovich

Anonymity. With material from: Dave Levin and Michelle Mazurek

Protocols for Anonymous Communication

ECE596C: Handout #9. Authentication Using Shared Secrets. Electrical and Computer Engineering, University of Arizona, Loukas Lazos

Privacy Preserving Data Publishing: From k-anonymity to Differential Privacy. Xiaokui Xiao Nanyang Technological University

Circuit Fingerprinting Attack: Passive Deanonymization of Tor Hidden Services

Notes for Lecture 5. 2 Non-interactive vs. Interactive Key Exchange

Secure Algorithms and Data Structures for Massive Networks

Optimizing Capacity-Heterogeneous Unstructured P2P Networks for Random-Walk Traffic

GeoPal: Friend Spam Detection in Social Networks with Private Location Proofs

Stable and Multiscale Topological Signatures

Sybil defenses via social networks

Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms. EJ Jung

ROUTING ALGORITHMS Part 2: Data centric and hierarchical protocols

ABSTRACT PRIVATE KEY ALLOCATION BASED ACCESS CONTROL SCHEME FOR SOCIAL NETWORKS. by Preethi Srinivas

Web caches (proxy server) Applications (part 3) Applications (part 3) Caching example (1) More about Web caching

Data Mining: Dynamic Past and Promising Future

STA Module 2B Organizing Data and Comparing Distributions (Part II)

STA Learning Objectives. Learning Objectives (cont.) Module 2B Organizing Data and Comparing Distributions (Part II)

ScienceDirect. A privacy preserving technique to prevent sensitive behavior exposure in semantic location-based service

Semantic Security Analysis of SCADA Networks to Detect Malicious Control Commands in Power Grids

The Tor Network. Cryptography 2, Part 2, Lecture 6. Ruben Niederhagen. June 16th, / department of mathematics and computer science

CS526: Information security

Tor: The Second-Generation Onion Router. Roger Dingledine, Nick Mathewson, Paul Syverson

Cascades. Rik Sarkar. Social and Technological Networks. University of Edinburgh, 2018.

Net Trust: User-Centered Detection of Pharming, Phishing and Fraud. L Jean Camp

Graph-Parallel Problems. ML in the Context of Parallel Architectures

Streaming algorithms for embedding and computing edit distance

Data-Centric Query in Sensor Networks

2 ND GENERATION ONION ROUTER

System Models. 2.1 Introduction 2.2 Architectural Models 2.3 Fundamental Models. Nicola Dragoni Embedded Systems Engineering DTU Informatics

Randomized Rumor Spreading in Social Networks

Forensic Analysis for Epidemic Attacks in Federated Networks

Distributed Algorithms. The Leader Election Problem. 1.2 The Network Model. Applications. 1 The Problem and the Model. Lesson two Leader Election

CPSC 467b: Cryptography and Computer Security

Storage capacity of labeled graphs

Online Threats. This include human using them!

Identification Schemes

APPLICATIONS AND PROTOCOLS. Mihir Bellare UCSD 1

Overview of Sensor Network Routing Protocols. WeeSan Lee 11/1/04

Graphs and Isomorphisms

Blum-Blum-Shub cryptosystem and generator. Blum-Blum-Shub cryptosystem and generator

THE SECOND GENERATION ONION ROUTER. Roger Dingledine Nick Mathewson Paul Syverson. -Presented by Arindam Paul

SDN-based Network Obfuscation. Roland Meier PhD Student ETH Zürich

Directional Networking in GPS Denied Environments Time Synchronization

A Haskell and Information Flow Control Approach to Safe Execution of Untrusted Web Applications

Naming. Brighten Godfrey cs598pbg Sept slides 2010 by Brighten Godfrey unless otherwise noted

CS Paul Krzyzanowski

A Survey of BGP Security Review

Ma/CS 6b Class 2: Matchings

Outsourcing Privacy-Preserving Social Networks to a Cloud

Anonymity. Assumption: If we know IP address, we know identity

Introduction to Computer Security

Centralities (4) By: Ralucca Gera, NPS. Excellence Through Knowledge

Rumor Routing Algorithm

2.1 Basic Cryptography Concepts

COMP4109 : Applied Cryptography

A Markov Chain Monte Carlo Approach for Source Detection in Networks

Update Propagation Through Replica Chain in Decentralized and Unstructured P2P Systems

Failure Localization in the Internet

UnLinked: Private Proximity-Based Offline OSN Interaction

Department of Computer Science Institute for System Architecture, Chair for Computer Networks. File Sharing

4640 IEEE TRANSACTIONS ON INFORMATION THEORY, VOL. 53, NO. 12, DECEMBER Gossiping With Multiple Messages

More crypto and security

CENTRALITIES. Carlo PICCARDI. DEIB - Department of Electronics, Information and Bioengineering Politecnico di Milano, Italy

Computer Security. 10r. Recitation assignment & concept review. Paul Krzyzanowski. Rutgers University. Spring 2018

Network Security: Anonymity. Tuomas Aura T Network security Aalto University, Nov-Dec 2012

Using Chains for what They re Good For

Onion Routing. Varun Pandey Dept. of Computer Science, Virginia Tech. CS 6204, Spring

Mathematics of Networks II

SybilGuard: Defending Against Sybil Attacks via Social Networks

The Game Chromatic Number of Some Classes of Graphs

Tor and circumvention: Lessons learned. Roger Dingledine The Tor Project

Trends in Signal Processing - SPCOM

Homomorphic Encryption. By Raj Thimmiah

Matching and Covering

Transcription:

Spy vs. Spy: Rumor Source Obfuscation Peter Kairouz University of Illinois at Urbana-Champaign Joint work with Giulia Fanti, Sewoong Oh, and Pramod Viswanath

Some people have important, sensitive things to say. Political activism

Personal confessions Others have less important, but sensitive things to say.

Existing anonymous messaging apps

Existing anonymous messaging apps Bob Mary Alice

Existing anonymous messaging apps Bob Mary Alice

Existing anonymous messaging apps Bob Mary Server Alice

Existing anonymous messaging apps Bob Mary Server Alice

Existing anonymous messaging apps Bob Mary Server Alice centralized networks are not truly anonymous!

Compromises in anonymity anonymity loss extends beyond the network

Distributed messaging Bob Mary Alice

Distributed messaging Bob Mary Alice

Distributed messaging Bob Mary Alice what can an adversary do?

Adversarial model Craig Bob Mary David Alice

Adversarial model Craig Bob Mary David Alice

Adversarial model Craig Bob Mary David Alice

Adversarial model Craig Bob Mary David Alice the adversary can figure out who got the message

Information flow in social networks G is the graph representing the social network

Information flow in social networks Alice

Information flow in social networks Alice passes the message to her neighbors

Information flow in social networks her neighbors pass the message to theirs

Information flow in social networks the message spreads in all directions at the same rate

Information flow in social networks the message spreads in all directions at the same rate

Information flow in social networks the message spreads in all directions at the same rate

Information flow in social networks this spreading model is known as the diffusion model

Adversary s observation can the adversary locate the message author?

Concentration around the center the message author is in the center with high probability

Rumor source identification high likelihood low likelihood diffusion does not provide anonymity [Shah, Zaman 2011]

Our goal Probability of detection diffusion 1 N T adaptive diffusion log N T N T : expected number of nodes with the message at time T

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion

Main result: adaptive diffusion high likelihood low likelihood provides provable anonymity guarantees!

let s start with line graphs Line graphs

Line graphs: diffusion T = 0 the message author starts a rumor at T = 0

Line graphs: diffusion T = 1 with probability α, the left (right) node receives the message

Line graphs: diffusion T = 1 the node to the right of the author receives the message

Line graphs: diffusion T = 2 the rumor propagates in both directions at the same rate

Line graphs: diffusion T = 2 the rumor propagates in both directions at the same rate

Line graphs: diffusion T = 3 α is independent of time or hop distance to message author

Line graphs: diffusion T = 3 diffusion on a line is equivalent to two independent random walks

Adversary s observation 1 2 3 4 5 N = 5 nodes with the message can the adversary locate the message author?

Maximum likelihood detection 1 2 3 4 5 Likelihoods 1 N T /2 N T v the node in the middle is the mostly likely author

Maximum likelihood detection 1 2 3 4 5 Likelihoods 1 NN/2 T N T v Probability of detection 1 N T

Line graphs: adaptive diffusion 2 1 0 1 2 consider a line graph

Line graphs: adaptive diffusion 2 1 0 1 2 T = 0 node 0 starts a rumor at T = 0

Line graphs: adaptive diffusion 2 1 0 1 2 1/2 1/2 T = 1 with probability 1/2, the left (right) node receives the message

Line graphs: adaptive diffusion 2 1 0 1 2 T = 1 right node 1 receives the message

Line graphs: adaptive diffusion 2 1 0 1 2 1/3 2/3 T = 2 hop distance to message author probability of passing message: α = h+1 T+1 elapsed time

Line graphs: adaptive diffusion 2 1 0 1 2 T = 2 right node 2 receives the message

Line graphs: adaptive diffusion 2 1 0 1 2 1/4 3/4 T = 3 hop distance to message author probability of passing message: α = h+1 T+1 elapsed time

Line graphs: adaptive diffusion 2 1 0 1 2 T = 3 left node 1 receives the message

Adversary s observation 2 1 0 1 2 N T = 4 nodes with the message can the adversary locate the message author?

Maximum likelihood detection 2 1 0 1 2 Likelihoods adaptive diffusion diffusion k 1 N T /2 N T

Maximum likelihood detection 2 1 0 1 2 Likelihoods adaptive diffusion diffusion k 1 N T /2 N T Probability of detection 1 N T

what about d-regular trees? d-regular trees

d-regular trees: diffusion likelihoods concentrate heavily around the center

d-regular trees : adaptive diffusion

d-regular trees : adaptive diffusion initially, the source is also the virtual source

d-regular trees : adaptive diffusion at T = 1, the author selects one neighbor at random

d-regular trees : adaptive diffusion the author passes h = 1 and T = 2 to the chosen neighbor at T = 1, the author selects one neighbor at random

d-regular trees : adaptive diffusion the chosen neighbor becomes the new virtual source

d-regular trees : adaptive diffusion at T = 2, the virtual source passes the message to all her neighbors

d-regular trees : adaptive diffusion as T transitions from even to odd, the virtual source has two options: keeping the virtual source token passing the virtual source token

Symmetry properties the graph is always symmetric around the virtual source

Keeping the virtual source token adaptive rate virtual source token is kept with probability α = d 1 T d 1 2 h 1 1 T 2 +1 1

Keeping the virtual source token happens in T = 3 and T = 4 all leaf nodes with the message pass it to their neighbors

Passing the virtual source token new virtual source current virtual source selects one of its neighbors at random

Passing the virtual source token previous virtual source passes h = 2 and T = 4 to new virtual source

Passing the virtual source token happens in T = 3 and T = 4 new virtual source passes the message to its neighbors which in turn pass it to their neighbors

Adversary s observation can the adversary locate the message author?

Maximum likelihood detection high likelihood low likelihood all nodes except for the final virtual source are equally likely

Main Theorem 1. We spread fast: N T d 1 T 2 2. All nodes except for the final virtual source are equally likely to be the source, hence P v ML = v = 1 N T 1 3. The expected distance between the estimated and true source is at least T 2.

General graphs adaptive diffusion for general graphs?

Simulation results: Facebook graph Probability of detection adaptive diffusion 1 N T bound likelihoods can be approximated numerically number of nodes with the message

Extensions and related work Theoretical Adversaries with timing information Peer-to-peer dynamic networks Hiding relays Multiple message sources Systems Cyber-bullying detection Anonymous video sharing Message caching Bootstrapping contacts

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback