ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Tarzan: a peer-to-peer anonymizing network layer
Full text PdfPdf (243 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the 9th ACM conference on Computer and communications security table of contents
Washington, DC, USA
SESSION: Peer to peer networks table of contents
Pages: 193 - 206  
Year of Publication: 2002
ISBN:1-58113-612-9
Authors
Michael J. Freedman  NYU Dept of Computer Science, New York, NY
Robert Morris  MIT, Cambridge, MA
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 21,   Downloads (12 Months): 159,   Citation Count: 49
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/586110.586137
What is a DOI?

ABSTRACT

Tarzan is a peer-to-peer anonymous IP network overlay. Because it provides IP service, Tarzan is general-purpose and transparent to applications. Organized as a decentralized peer-to-peer overlay, Tarzan is fault-tolerant, highly scalable, and easy to manage.Tarzan achieves its anonymity with layered encryption and multi-hop routing, much like a Chaumian mix. A message initiator chooses a path of peers pseudo-randomly through a restricted topology in a way that adversaries cannot easily influence. Cover traffic prevents a global observer from using traffic analysis to identify an initiator. Protocols toward unbiased peer-selection offer new directions for distributing trust among untrusted entities.Tarzan provides anonymity to either clients or servers, without requiring that both participate. In both cases, Tarzan uses a network address translator (NAT) to bridge between Tarzan hosts and oblivious Internet hosts.Measurements show that Tarzan imposes minimal overhead over a corresponding non-anonymous overlay route.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
The Anonymizer. http://anonymizer.com.
 
2
Oliver Berthold , Hannes Federrath , Stefan Köpsell, Web MIXes: a system for anonymous and unobservable Internet access, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.115-129, January 2001, Berkeley, California, United States
3
David L. Chaum, Untraceable electronic mail, return addresses, and digital pseudonyms, Communications of the ACM, v.24 n.2, p.84-90, Feb. 1981  [doi>10.1145/358549.358563]
 
4
D. Chaum, The dining cryptographers problem: unconditional sender and recipient untraceability, Journal of Cryptology, v.1 n.1, p.65-75, 1988
 
5
Ian Clarke , Oskar Sandberg , Brandon Wiley , Theodore W. Hong, Freenet: a distributed anonymous information storage and retrieval system, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.46-66, January 2001, Berkeley, California, United States
6
Frank Dabek , M. Frans Kaashoek , David Karger , Robert Morris , Ion Stoica, Wide-area cooperative storage with CFS, Proceedings of the eighteenth ACM symposium on Operating systems principles, October 21-24, 2001, Banff, Alberta, Canada
 
7
Dai, W. Pipenet. http://www.eskimo.com/ weidai/pipenet.txt.
 
8
Roger Dingledine , Michael J. Freedman , David Molnar, The free haven project: distributed anonymous storage service, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.67-95, January 2001, Berkeley, California, United States
 
9
John R. Douceur, The Sybil Attack, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.251-260, March 07-08, 2002
 
10
Electronic Frontiers Georgia (EFGA). Anonymous remailer information. http://anon.efga.org/Remailers/.
 
11
Federal Bureau of Investigations. Carnivore diagnostic tool. http://www.fbi.gov/hq/lab/carnivore/carnivore.htm.
 
12
Federrath, H., Ed. Designing Privacy Enhancing Technologies: International Workshop on Design Issues in Anonymity and Unobservability (2001), vol. 2009 of Lecture Notes in Computer Science, Springer-Verlag.
 
13
Goldberg, I., and Shostack, A. Freedom network 1.0 architecture, November 1999.
 
14
Goldberg, I., and Wagner, D. TAZ servers and the Rewebber network: Enabling anonymous publishing on the World Wide Web. First Monday 3, 4 (1998).
 
15
Guan, Y., Li, C., Xuan, D., Bettati, R., and Zhao, W. Preventing traffic analysis for real-time communication networks. In Proceedings of Milcom '99 (November 1999).
16
Mor Harchol-Balter , Tom Leighton , Daniel Lewin, Resource discovery in distributed networks, Proceedings of the eighteenth annual ACM symposium on Principles of distributed computing, p.229-237, May 04-06, 1999, Atlanta, Georgia, United States  [doi>10.1145/301308.301362]
17
Eddie Kohler , Jinyang Li , Vern Paxson , Scott Shenker, Observed structure of addresses in IP traffic, Proceedings of the 2nd ACM SIGCOMM Workshop on Internet measurment, November 06-08, 2002, Marseille, France  [doi>10.1145/637201.637242]
 
18
David Martin , Andrew Schulman, Deanonymizing Users of the SafeWeb Anonymizing Service, Proceedings of the 11th USENIX Security Symposium, p.123-137, August 05-09, 2002
19
David Mazières , Michael Kaminsky , M. Frans Kaashoek , Emmett Witchel, Separating key management from file system security, Proceedings of the seventeenth ACM symposium on Operating systems principles, p.124-139, December 12-15, 1999, Charleston, South Carolina, United States
 
20
Andreas Pfitzmann , Marit Köhntopp, Anonymity, unobservability, and pseudeonymity — a proposal for terminology, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.1-9, January 2001, Berkeley, California, United States
21
Michael K. Reiter , Aviel D. Rubin, Crowds: anonymity for Web transactions, ACM Transactions on Information and System Security (TISSEC), v.1 n.1, p.66-92, Nov. 1998  [doi>10.1145/290163.290168]
 
22
RIAA v. Verizon. Motion to enforce July 24, 2002 subpoena. U.S. Distinct Court, District of Columbia, August 20, 2002. Case No. 1:02MS00323.
 
23
Rosen, E., Viswanathan, A., and Callon, R. Multiprotocol Label Switching Architecture, January 2001. RFC 3031.
 
24
Bruce Schneier, Description of a New Variable-Length Key, 64-bit Block Cipher (Blowfish), Fast Software Encryption, Cambridge Security Workshop, p.191-204, December 09-11, 1993
25
Ion Stoica , Robert Morris , David Karger , M. Frans Kaashoek , Hari Balakrishnan, Chord: A scalable peer-to-peer lookup service for internet applications, Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications, p.149-160, August 2001, San Diego, California, United States
 
26
Paul F. Syverson , David M. Goldschlag , Michael G. Reed, Anonymous Connections and Onion Routing, Proceedings of the 1997 IEEE Symposium on Security and Privacy, p.44, May 04-07, 1997
 
27
Paul Syverson , Gene Tsudik , Michael Reed , Carl Landwehr, Towards an analysis of onion routing security, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.96-114, January 2001, Berkeley, California, United States
28
Marc Waldman , David Mazières, Tangler: a censorship-resistant publishing system based on document entanglements, Proceedings of the 8th ACM conference on Computer and Communications Security, November 05-08, 2001, Philadelphia, PA, USA  [doi>10.1145/501983.502002]
 
29
Waldman, M., Rubin, A. D., and Cranor, L. F. Publius: A robust, tamper-evident, censorship-resistant, web publishing system. In Proceedings of the 9th USENIX Security Symposium (Denver, Colorado, August 2000), pp. 59--72.
 
30
Walton, G. China's Golden Shield: Corporations and the development of surveillance technology in the People's Republic of China, 2001. http://go.openflows.org/.
 
31
Wright, M., Adler, M., Levine, B. N., and Shields, C. An analysis of the degradation of anonymous protocols. In Network and Distributed System Security Symposium (San Diego, California, February 2002).

CITED BY  49
Marc Rennhard , Bernhard Plattner, Introducing MorphMix: peer-to-peer based anonymous Internet usage with collusion detection, Proceedings of the 2002 ACM workshop on Privacy in the Electronic Society, p.91-102, November 21-21, 2002, Washington, DC
Ashutosh Jaiswal , Yongdae Kim , Maria Gini, Security model for a multi-agent marketplace, Proceedings of the 5th international conference on Electronic commerce, p.119-124, September 30-October 03, 2003, Pittsburgh, Pennsylvania
Nick Feamster , Roger Dingledine, Location diversity in anonymity networks, Proceedings of the 2004 ACM workshop on Privacy in the electronic society, October 28-28, 2004, Washington DC, USA
Matthias Bauer, New covert channels in HTTP: adding unwitting Web browsers to anonymity sets, Proceedings of the 2003 ACM workshop on Privacy in the electronic society, October 30, 2003, Washington, DC
Stefan Köpsell , Ulf Hillig, How to achieve blocking resistance for existing systems enabling anonymous web surfing, Proceedings of the 2004 ACM workshop on Privacy in the electronic society, October 28-28, 2004, Washington DC, USA
Matthew K. Wright , Micah Adler , Brian Neil Levine , Clay Shields, The predecessor attack: An analysis of a threat to anonymous communications systems, ACM Transactions on Information and System Security (TISSEC), v.7 n.4, p.489-522, November 2004
Bradley N. Miller , Joseph A. Konstan , John Riedl, PocketLens: Toward a personal recommender system, ACM Transactions on Information Systems (TOIS), v.22 n.3, p.437-476, July 2004
Michael Kinateder , Ralf Terdic , Kurt Rothermel, Strong pseudonymous communication for peer-to-peer reputation systems, Proceedings of the 2005 ACM symposium on Applied computing, March 13-17, 2005, Santa Fe, New Mexico
Flavio DePaoli , Leonardo Mariani, Dependability in Peer-to-Peer Systems, IEEE Internet Computing, v.8 n.4, p.54-61, July 2004
Xinyuan Wang , Shiping Chen , Sushil Jajodia, Tracking anonymous peer-to-peer VoIP calls on the internet, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Anna M. Shubina , Sean W. Smith, Using caching for browsing anonymity, ACM SIGecom Exchanges, v.4 n.2, p.11-20, June, 2003
Sergio Marti , Hector Garcia-Molina, Taxonomy of trust: categorizing P2P reputation systems, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.50 n.4, p.472-484, 15 March 2006
Heiko Tillwick , Martin Olivier, Towards a framework for connection anonymity, Proceedings of the 2005 annual research conference of the South African institute of computer scientists and information technologists on IT research in developing countries, p.113-122, September 20-22, 2005, White River, South Africa
Micah Sherr , Boon Thau Loo , Matt Blaze, Towards application-aware anonymous routing, Proceedings of the 2nd USENIX workshop on Hot topics in security, p.1-5, August 07, 2007, Boston, MA
Neelesh Bansod , Ashish Malgi , Byung K. Choi , Jean Mayo, MuON: Epidemic based mutual anonymity in unstructured P2P networks, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.52 n.5, p.915-934, April, 2008
Emin Gün Sirer , Sharad Goel , Mark Robson , Doǧan Engin, Eluding carnivores: file sharing with strong anonymity, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, September 19-22, 2004, Leuven, Belgium
Xiaoxin Wu , Ninghui Li, Achieving privacy in mesh networks, Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks, October 30-30, 2006, Alexandria, Virginia, USA
Arjun Nambiar , Matthew Wright, Salsa: a structured approach to large-scale anonymity, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA
Alan Mislove , Gaurav Oberoi , Ansley Post , Charles Reis , Peter Druschel , Dan S. Wallach, AP3: cooperative, decentralized anonymous communication, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, p.30-es, September 19-22, 2004, Leuven, Belgium
Pan Wang , Peng Ning , Douglas S. Reeves, A k-anonymous communication protocol for overlay networks, Proceedings of the 2nd ACM symposium on Information, computer and communications security, March 20-22, 2007, Singapore
John Risson , Tim Moors, Survey of research towards robust peer-to-peer networks: search methods, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.50 n.17, p.3485-3521, 5 December 2006
Li Xiao , Yunhao Liu , Wenjun Gu , Dong Xuan , Xiaomei Liu, Mutual anonymous overlay multicast, Journal of Parallel and Distributed Computing, v.66 n.9, p.1205-1216, September 2006
S. Mauw , J. Verschuren , E. P. de Vink, Data Anonymity in the FOO Voting Scheme, Electronic Notes in Theoretical Computer Science (ENTCS), 168, p.5-28, February, 2007
Mayank Bawa , Roberto J. Bayardo, Jr. , Rakesh Agrawal, Privacy-preserving indexing of documents on the network, Proceedings of the 29th international conference on Very large data bases, p.922-933, September 09-12, 2003, Berlin, Germany
Rungrat Wiangsripanawan , Willy Susilo , Rei Safavi-Naini, Design principles for low latency anonymous network systems secure against timing attacks, Proceedings of the fifth Australasian symposium on ACSW frontiers, January 30-February 02, 2007, Ballarat, Australia
Songqing Chen , Shiping Chen , Huiping Guo , Bo Shen , Sushil Jajodia, Achieving simultaneous distribution control and privacy protection for Internet media delivery, ACM Transactions on Multimedia Computing, Communications, and Applications (TOMCCAP), v.4 n.2, p.1-23, May 2008
Ziv Bar-Yossef , Roy Friedman , Gabriel Kliot, RaWMS - Random Walk Based Lightweight Membership Service for Wireless Ad Hoc Networks, ACM Transactions on Computer Systems (TOCS), v.26 n.2, p.1-66, June 2008
Joakim Kalvenes , Amit Basu, Design of Robust Business-to-Business Electronic Marketplaces with Guaranteed Privacy, Management Science, v.52 n.11, p.1721-1736, November 2006
Kevin Bauer , Damon McCoy , Dirk Grunwald , Tadayoshi Kohno , Douglas Sicker, Low-resource routing attacks against tor, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
George O. M. Yee, A privacy controller approach for privacy protection in web services, Proceedings of the 2007 ACM workshop on Secure web services, November 02-02, 2007, Fairfax, Virginia, USA
Joan Feigenbaum , Aaron Johnson , Paul Syverson, Probabilistic analysis of onion routing in a black-box model, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
Jonathan A. Poritz, Who Searches the Searchers? Community Privacy in the Age of Monolithic Search Engines, The Information Society, v.23 n.5, p.383-389, October 2007
Munawar Hafiz, A collection of privacy design patterns, Proceedings of the 2006 conference on Pattern languages of programs, October 21-23, 2006, Portland, Oregon
Matthew K. Wright , Micah Adler , Brian Neil Levine , Clay Shields, Passive-Logging Attacks Against Anonymous Communications Systems, ACM Transactions on Information and System Security (TISSEC), v.11 n.2, p.1-34, March 2008
Divyakant Agrawal , Amr El Abbadi , Subhash Suri, Attribute-based access to distributed data over P2P networks, International Journal of Computational Science and Engineering, v.3 n.2, p.112-123, November 2007
Pitipatana Sakarindr , Nirwan Ansari, Adaptive trust-based anonymous network, International Journal of Security and Networks, v.2 n.1/2, p.11-26, March 2007
Ye Zhu , Xinwen Fu , Riccardo Bettati , Wei Zhao, Analysis of flow-correlation attacks in anonymity network, International Journal of Security and Networks, v.2 n.1/2, p.137-153, March 2007
Wolf Müller , Henryk Plötz , Jens-Peter Redlich , Takashi Shiraki, Sybil proof anonymous reputation management, Proceedings of the 4th international conference on Security and privacy in communication netowrks, September 22-25, 2008, Istanbul, Turkey
Kevin Bauer , Damon McCoy , Dirk Grunwald , Douglas Sicker, BitBlender: light-weight anonymity for BitTorrent, Proceedings of the workshop on Applications of private and anonymous communications, p.1-8, September 22-25, 2008, Istanbul, Turkey
Roger Dingledine , Nick Mathewson , Paul Syverson, Deploying Low-Latency Anonymity: Design Challenges and Social Factors, IEEE Security and Privacy, v.5 n.5, p.83-87, September 2007
Chris Lesniewski-Laas, A Sybil-proof one-hop DHT, Proceedings of the 1st workshop on Social network systems, p.19-24, April 01-01, 2008, Glasgow, Scotland
Wei Wang , Mehul Motani , Vikram Srinivasan, Dependent link padding algorithms for low latency anonymity systems, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Xiaoxin Wu , Elisa Bertino, An Analysis Study on Zone-Based Anonymous Communication in Mobile Ad Hoc Networks, IEEE Transactions on Dependable and Secure Computing, v.4 n.4, p.252-265, October 2007
Prateek Mittal , Nikita Borisov, Information leaks in structured peer-to-peer anonymous communication systems, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Ren-Yi Xiao, Survey on anonymity in unstructured peer-to-peer systems, Journal of Computer Science and Technology, v.23 n.4, p.660-671, July 2008
Marek Klonowski , Mirosław Kutyłowski , Bartłomiej Różański, Hiding Data Sources in P2P Networks, Proceeding of the 2005 conference on Applied Public Key Infrastructure: 4th International Workshop: IWAP 2005, p.225-239, May 09, 2005
Makoto Iguchi , Shigeki Goto, Privacy-conscious P2P data sharing scheme with bogus profile distribution, Web Intelligence and Agent Systems, v.7 n.2, p.209-222, April 2009
Mouna Kacimi , Stefano Ortolani , Bruno Crispo, Anonymous opinion exchange over untrusted social networks, Proceedings of the Second ACM EuroSys Workshop on Social Network Systems, p.26-32, March 31-31, 2009, Nuremberg, Germany
Mayank Bawa , Roberto J. Bayardo, Jr , Rakesh Agrawal , Jaideep Vaidya, Privacy-preserving indexing of documents on the network, The VLDB Journal — The International Journal on Very Large Data Bases, v.18 n.4, p.837-856, August 2009

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.1 Network Architecture and Design
          Subjects: Distributed networks

Additional Classification:
  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.1 Public Policy Issues
          Subjects: Privacy


General Terms:
Design, Human Factors, Management, Security


Keywords:
IP tunnels, anonymity, cover traffic, distributed trust, mix-nets, overlay networks, peer-to-peer

Collaborative Colleagues:
Michael J. Freedman: colleagues
Robert Morris: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player