Security
Introduction to Mix Networks and Katzenpost
a new anonymity movement
August 23, 2019
9:00 PM – 9:45 PM Add to calendar
9:00 PM – 9:45 PM Add to calendar
Curie
This talk will introduce the fundamental concepts of mix networks as
well as the Katzenpost mix network free software project. We are not
just implementing a new mix network but starting a new anonymity
movement and we welcome others to join us! Like Tor, mix networks
protect metadata by using layered encryption and routing packets
between a series of independent nodes. Mix networks resist vastly more
powerful adversary models than Tor though, including partial defense
against global passive adversaries. In so doing, mix networks add both
latency and cover traffic. I shall outline the basic components of a
mix network, touch on their roles in resisting active and passive
attacks. In particular I'll mention how mix networks can be used with
encrypted messaging applications and crypto currency to resist global
network surveillance and traffic analysis.
Academics have proposed various anonymity technologies with far
stronger threat models than Tor, but by far the most practical and
efficient option remains mix networks, which date to the founding of
anonymity research by David Chaum in 1981. Tor was inspired by mix
networks and shares some superficial similarities, but mix networks'
are vastly stronger if they judiciously add latency and decoy traffic.
There are several historical reasons why mixnets lost popularity and
why Tor's onion routing won. Namely, Tor is low latency and can be
used to browse the web. This is in contrast to mix networks which are
essentially an unreliable packet switching network. Historically mix
networks achieved enough mix entropy by using long delays whereas it
is becoming more widely understood that there exists a trade off
between legit traffic, decoy traffic and latency. After this
introduction to mix networks I'll talk a bit about the Katzenpost mix
network software project which is based off of the recently published
academic paper "The Loopix Anonymity System". These new insights into
mix network designs allow modern mix networks to make the correct
design trade offs so that we can keep the latency relatively
low. Historically high latency and unreliability has been a major
obstacle to mass adoption. I shall explain how Katzenpost solves both
of these problems and allows developers to easily add network services
to the mix network to support a wide variety of client applications
including but not limited to: encrypted messaging, crypto currency
transaction transport, offline browsing and, transporting client
interactions with Distributed Hash Tables and Conflict Free
Replicating Data Types et cetera.
Additional information
| Type | lecture |
|---|---|
| Language | English |
More sessions
| 8/21/19 |
The talks shows the security model of Kubernetes and how to detect and fight security weaknesses with a few lines of scripting.
|
| 8/21/19 |
Seldom have DNS protocol changes sparked such fierce debate as happen in the case of DNS-over-HTTPs (Doh) and it's little cousin, DNS-over-TLS (DoT). While for many people it is a matter of black and white, the reality out there is various shades of grey ;) This talk will discuss the technical and political aspects of these DNS privacy protocols, where they come from, who is implementing DoH/DoT (both in the browser space and otherwise) and why it is a [good|bad] idea to support these protocol ...
|
| 8/21/19 |
Typical home networks use a closed-source Internet Service Provider supplied router/firewall and contain no restrictions on communications between clients within the network. The widespread deployment of network-connected appliances, control systems, lighting, etc, means that this design is insecure. This talk will cover the basics of networking, including why and how segregation of different types of network clients and traffic can be achieved to increase privacy and security.
|
| 8/21/19 |
We have learned that Math might be our last defence line against a real existing all-encompassing surveillance. One central challenge in this conflict is to combine authentication and anonymity. Number theory provides us many tools to create really surprising technologies for social communication. A lot of these technologies have not yet been brought to the world of concrete implementations. This has the implication that some ideas which have been presented years ago are not covered by patents ...
|
| 8/21/19 |
Remember the good old fun sport, where people bought random hard drives from ebay and did forensics on them? Did you know you can do the same thing with used IoT devices too? Most end-users have no idea what kind of information their devices are storing and how to securely clean their devices (if that even is possible). Lets explore together what the risks are and how we can extract that data.
|
| 8/22/19 |
This case study of NoScript’s UX redesign showcases tried and true design principles that make security tools usable to a wider range of audiences.
|
| 8/22/19 |
i'll show how the average developer (like me) can secure their software and systems by automatically checking for known vulnerabilities and security issues as part of their CI-Toolchain. The Talk will introduce basic security knowhow, then show how you can use Open Source Frameworks to check for vulnerable dependencies, containers and (web-)APIs in a live demo
|
