...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>IEEE transactions on dependable and secure computing >Forensic Identification of Anonymous Sources in OneSwarm
【24h】

Forensic Identification of Anonymous Sources in OneSwarm

机译:法证鉴定OneSwarm中的匿名来源

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

OneSwarm is a p2p system for anonymous file sharing. We quantify the system’s vulnerability to three attacks that identify the sources of files. First, we detail and prove that a timing attack allows a single attacker to investigate all its neighbors for possession of specific files. We prove the attack is possible due to OneSwarm’s design and is unthwarted by changes made to OneSwarm since we released our attack. Second, we show that OneSwarm is much more vulnerable to a collusion attack than previously reported, and we quantify the attack’s success given a file’s popularity, a factor not evaluated earlier. Third, we present a novel application of a known TCP-based attack. It allows a single attacker to identify whether a neighbor is the source of data or a proxy for it. Each of these attacks can be repeated as attackers quit and rejoin the network. We present these attacks in the context of forensics and the investigation of child pornography. We show that our attacks meet the higher standards required of law enforcement for criminal investigations.
机译:OneSwarm是用于匿名文件共享的p2p系统。我们通过三种识别文件来源的攻击来量化系统的漏洞。首先,我们详细说明并证明定时攻击使单个攻击者能够调查其所有邻居是否拥有特定文件。我们证明,由于OneSwarm的设计,这种攻击是可能的,并且自我们发布攻击以来对OneSwarm所做的更改并没有阻止。其次,我们证明了OneSwarm较之以前报告的更容易受到串通攻击,并且考虑到文件的流行程度,我们量化了攻击成功的可能性,这是之前没有评估的因素。第三,我们提出了一种基于TCP的已知攻击的新颖应用。它允许单个攻击者识别邻居是数据源还是数据代理。随着攻击者退出并重新加入网络,这些攻击中的每一种都可以重复进行。我们在法医和儿童色情调查的背景下介绍这些攻击。我们表明,我们的攻击符合刑事调查要求的更高执法标准。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号