|
| This Article | ||
| ||
| Share | ||
| Bibliographic References | ||
| Add to: | ||
 Digg  Furl  Spurl  Blink  Simpy  Google  Del.icio.us  Y!MyWeb | ||
| Search | ||
| ||
2009 Third International Conference on Network and System Security
Effective Attacks in the Tor Authentication Protocol
Gold Coast, Queensland, Australia
October 19-October 21
ISBN: 978-0-7695-3838-9
| ASCII Text | x | ||
| Yang Zhang, "Effective Attacks in the Tor Authentication Protocol," Network and System Security, International Conference on, pp. 81-86, 2009 Third International Conference on Network and System Security, 2009. | |||
| BibTex | x | ||
| @article{ 10.1109/NSS.2009.94, author = {Yang Zhang}, title = {Effective Attacks in the Tor Authentication Protocol}, journal ={Network and System Security, International Conference on}, volume = {0}, year = {2009}, isbn = {978-0-7695-3838-9}, pages = {81-86}, doi = {http://doi.ieeecomputersociety.org/10.1109/NSS.2009.94}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, } | |||
| RefWorks Procite/RefMan/Endnote | x | ||
| TY - CONF JO - Network and System Security, International Conference on TI - Effective Attacks in the Tor Authentication Protocol SN - 978-0-7695-3838-9 SP81 EP86 A1 - Yang Zhang, PY - 2009 KW - Tor Authentication Protocol KW - Tor KW - Universally Composable Security KW - Onion Routing Protocol KW - Authenticator VL - 0 JA - Network and System Security, International Conference on ER - | |||
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/NSS.2009.94
As an anonymous Internet communication system Tor is popular and famous, being used by lots of users. The security of Tor is based on the authentication protocol. Although the Tor authentication protocol has been proved secure, this paper discovers its security vulnerability through its concurrency analysis, and shows it cannot be securely executed by multiple concurrent sessions. A new session-key exchange protocol for Tor is proposed to dispose of the security vulnerability, where a modular method is adopted to design a secure key exchange protocol in realistic world. Finally, the proposed protocol is proved secure in the UC (universally composable) model which defines conditions for a protocol to securely compose with other protocols in a concurrent environment.
Index Terms:
Tor Authentication Protocol, Tor, Universally Composable Security, Onion Routing Protocol, Authenticator
Citation:
Yang Zhang, "Effective Attacks in the Tor Authentication Protocol," nss, pp.81-86, 2009 Third International Conference on Network and System Security, 2009
Usage of this product signifies your acceptance of the Terms of Use.