Abstract

We use the probabilistic model checker PRISM to analyze the Crowds system for anonymous Web browsing. This case study demonstrates how probabilistic model checking techniques can be used to formally analyze security properties of a peer-to-peer group communication system based on random message routing among members. The behavior of group members and the adversary is modeled as a discrete-time Markov chain, and the desired security properties are expressed as PCTL formulas. The PRISM model checker is used to perform automated analysis of the system and verify anonymity guarantees it provides. Our main result is a demonstration of how certain forms of probabilistic anonymity degrade when group size increases or random routing paths are rebuilt, assuming that the corrupt group members are able to identify and/or correlate multiple routing paths originating from the same sender. Supported in part by DARPA contract N66001-00-C-8015 “Agile Management of Dynamic Collaboration”.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Probabilistic analysis of anonymity
V Shmatikov
-
V ShmatikovV Shmatikov
24 Jun 2002
Exact quantitative probabilistic model checking through rational search
Umang Mathur ... Matthew S Bauer
Formal Methods in System Design | VOL. 56
Umang Mathur, et. al.Umang Mathur ... Matthew S Bauer
29 Jul 2020
Probabilistic Model Checking of the One-Dimensional Ising Model
Toshifusa Sekizawa ... Tohru Kikuno
IEICE Transactions on Information and Systems | VOL. E92-D
Toshifusa Sekizawa, et. al.Toshifusa Sekizawa ... Tohru Kikuno
01 Jan 2009
Probabilistic model checking for the quantification of DoS security threats
Stylianos Basagiannis ... Nikolaos Alexiou
Computers & Security | VOL. 28
Stylianos Basagiannis, et. al.Stylianos Basagiannis ... Nikolaos Alexiou
17 Jan 2009
View more papers

More From: Journal of Computer Security

Paper Title
Journal
Date
Author
E-Tenon: An efficient privacy-preserving secure open data sharing scheme for EHR system
Prosanta Gope ... Jianting Ning
Journal of Computer Security | VOL. 32
Prosanta Gope, et. al.Prosanta Gope ... Jianting Ning
26 Aug 2024
DSLR–: A low-overhead data structure layout randomization for defending data-oriented programming
Jin Wei ... Ping Chen
Journal of Computer Security | VOL. 32
Jin Wei, et. al.Jin Wei ... Ping Chen
17 Jun 2024
Analysis of neural network detectors for network attacks
Qingtian Zou ... Lan Zhang
Journal of Computer Security | VOL. 32
Qingtian Zou, et. al.Qingtian Zou ... Lan Zhang
17 Jun 2024
Proactive enforcement of provisions and obligations
David Basin ... Thomas Hildebrandt
Journal of Computer Security | VOL. 32
David Basin, et. al.David Basin ... Thomas Hildebrandt
17 Jun 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.