Cryptology ePrint Archive: Report 2017/888

Asynchronous provably-secure hidden services

Philippe Camacho and Fernando Krell

Abstract: The client-server architecture is one of the most widely used in the Internet for its simplicity and flexibility. In practice the server is assigned a public address so that its services can be consumed. This makes theserver vulnerable to a number of attacks such as Distributed Denial of Service (DDoS), censorship from authoritarian governments or exploitationof software vulnerabilities.

In this work we propose an asynchronous protocol for allowing a client to issue requests to a server without revealing any information about the location of the server. In addition, our solution reveals limited information about the network topology, leaking only the distance from the client to the corrupted participants.

We also provide a simulation-based security definition capturing the requirement described above. Our protocol is secure in the semi-honest model against any number of colluding participants, and has linear communication complexity.

Finally, we extend our solution to handle active adversaries. We show that malicious participants can only trigger a premature termination of the protocol, in which case they are identified. For this solution the communication complexity becomes quadratic.

To the best of our knowledge our solution is the first asynchronous protocol that provides strong security guarantees.

Category / Keywords: hidden servers; anonymity

Original Publication (with minor differences): CT-RSA 2018

Date: received 13 Sep 2017, last revised 12 Jun 2018

Contact author: philippe camacho at dreamlab net

Available format(s): PDF | BibTeX Citation

Note: Fix in protocol for active adversaries.

Version: 20180612:131537 (All versions of this report)

Short URL: ia.cr/2017/888

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]