通信学报
• 学术论文 • 上一篇 下一篇
李龙海,付少锋,苏锐丹,车向泉
出版日期:
发布日期:
基金资助:
Online:
Published:
Supported by:
摘要: 对时金桥等提出的混合结构洋葱路由方案进行了分析,发现存在的安全漏洞。第一个漏洞来源于其密码学报文结构的可展性。攻击者能够利用该漏洞改变洋葱消息的路由或在其中嵌入标签以追踪消息路由。另一个漏洞表现在匿名转发服务器容易遭受选择密文攻击。展示了3种不同的能够以较低代价破坏发送者和接收者不可关联性的攻击过程。为了避免所提到的攻击,提出了能够利用反向调查捕获恶意节点的修正方案。
Abstract: SHI Jin-qiao et al’s hybrid-structured onion routing scheme was analysed and some security flaws were found in their design. The first flaw was derived from the malleability of its cryptographic message format which could be exploited by attackers to redirect an onion message or embed tags into it for tracing its routing path. The second flaw was the vulnerability of relay servers to chosen ciphertext attack. Three different attacks were presented that each broke the sender-receiver unlinkability entirely at a relatively low cost. To evade these attacks, a modified scheme was also proposed which could capture malicious nodes by using upstream investigation.
李龙海,付少锋,苏锐丹,车向泉. 对一种混合结构洋葱路由方案的密码学分析[J]. 通信学报.
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.infocomm-journal.com/txxb/CN/
https://www.infocomm-journal.com/txxb/CN/Y2013/V34/I4/10