BNymble: More Anonymous Blacklisting at Almost No Cost (A Short Paper)
Anonymous blacklisting schemes allow online service providers to prevent future anonymous access by abusive users while preserving the privacy of all anonymous users (both abusive and non-abusive). The first scheme proposed for this purpose was Nymble, an extremely efficient scheme based only on symmetric primitives; however, Nymble relies on trusted third parties who can collude to de-anonymize users of the scheme. Two recently proposed schemes, Nymbler and Jack, reduce the trust placed in these third parties at the expense of using less-efficient asymmetric crypto primitives. We present BNymble, a scheme which matches the anonymity guarantees of Nymbler and Jack while (nearly) maintaining the efficiency of the original Nymble. The key insight of BNymble is that we can achieve the anonymity goals of these more recent schemes by replacing only the infrequent “User Registration” protocol from Nymble with asymmetric primitives. We prove the security of BNymble, and report on its efficiency.
KeywordsRandom Oracle Blind Signature Anonymous User Modular Exponentiation Cryptographic Hash Function
Unable to display preview. Download preview PDF.
- 4.Dingledine, R., Mathewson, N., Syverson, P.: Tor: the second-generation onion router. In: SSYM 2004: Proceedings of the 13th Conference on USENIX Security Symposium, pp. 21–21. USENIX Association, Berkeley (2004)Google Scholar
- 5.GmbH, J.: Jondonym: Private and secure web surfing (September 2010), http://anonymous-proxy-servers.net/
- 6.Henry, R., Goldberg, I.: Extending nymble-like systems. Tech. Rep. Technical Report CACR 2010-23, Unviersity of Waterloo (2010)Google Scholar
- 7.Henry, R., Henry, K., Goldberg, I.: Making a nymbler nymble using verbs. Tech. rep., University of Waterloo Technical Report CACR 2010-05 (2010)Google Scholar
- 8.Holt, J.E., Seamons, K.E.: Nym: Practical pseudonymity for anonymous networks. Tech. Rep. 4, BYU Internet Security Research Lab (2006)Google Scholar
- 10.Lin, Z., Hopper, N.: Jack: Scalable accumulator-based nymble system. In: WPES 2010: Proceedings of the 9th ACM Workshop on Privacy in the Electronic Society. ACM (2010)Google Scholar
- 11.Tsang, P.P., Au, M.H., Kapadia, A., Smith, S.W.: Blacklistable anonymous credentials: blocking misbehaving users without ttps. In: CCS 2007: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 72–81. ACM, New York (2007)Google Scholar
- 12.Tsang, P.P., Au, M.H., Kapadia, A., Smith, S.W.: BLAC: Revoking Repeatedly Misbehaving Anonymous Users Without Relying on TTPs. Tech. rep., Dartmouth Computer Science TR2008-635 (2008)Google Scholar
- 13.Tsang, P.P., Au, M.H., Kapadia, A., Smith, S.W.: Perea: Towards practical ttp-free revocation in anonymous authentication. In: CCS 2008: Proceedings of the 14th ACM Conference on Computer and Communications Security, pp. 333–344. ACM (2008)Google Scholar
- 14.Tsang, P.P., Kapadia, A., Cornelius, C., Smith, S.W.: Nymble: Blocking Misbehaving Users in Anonymizing Networks. IEEE Transactions on Dependable and Secure Computing (TDSC) (September 2009)Google Scholar
- 15.Tsang, P.P., Kapadia, A., Cornelius, C., Smith, S.W.: Nymble: Blocking misbehaving users in anonymizing networks. Tech. rep., Dartmouth Computer Science TR2008-637 (2008)Google Scholar