通信学报

• 学术论文 • 上一篇    下一篇

对一种混合结构洋葱路由方案的密码学分析

李龙海,付少锋,苏锐丹,车向泉   

  1. 西安电子科技大学 计算机学院,陕西 西安 710071
  • 出版日期:2013-04-25 发布日期:2013-04-15
  • 基金资助:
    国家自然科学基金资助项目(61101142);中央高校基本科研基金资助项目(K50510030012)

Cryptanalysis of a hybrid-structured onion routing scheme

  • Online:2013-04-25 Published:2013-04-15
  • Supported by:
    The National Natural Science Foundation of China (61101142); The Fundamental Research Funds of the Central Universities(K50510030012)

摘要: 对时金桥等提出的混合结构洋葱路由方案进行了分析,发现存在的安全漏洞。第一个漏洞来源于其密码学报文结构的可展性。攻击者能够利用该漏洞改变洋葱消息的路由或在其中嵌入标签以追踪消息路由。另一个漏洞表现在匿名转发服务器容易遭受选择密文攻击。展示了3种不同的能够以较低代价破坏发送者和接收者不可关联性的攻击过程。为了避免所提到的攻击,提出了能够利用反向调查捕获恶意节点的修正方案。

Abstract: SHI Jin-qiao et al’s hybrid-structured onion routing scheme was analysed and some security flaws were found in their design. The first flaw was derived from the malleability of its cryptographic message format which could be exploited by attackers to redirect an onion message or embed tags into it for tracing its routing path. The second flaw was the vulnerability of relay servers to chosen ciphertext attack. Three different attacks were presented that each broke the sender-receiver unlinkability entirely at a relatively low cost. To evade these attacks, a modified scheme was also proposed which could capture malicious nodes by using upstream investigation.

No Suggested Reading articles found!