Cryptology ePrint Archive: Report 2021/1514

Clarion: Anonymous Communication from Multiparty Shuffling Protocols

Saba Eskandarian and Dan Boneh

Abstract: This paper studies the role of multiparty shuffling protocols in enabling more efficient metadata-hiding communication. We show that the process of shuffling messages can be expedited by having servers collaboratively shuffle and verify secret-shares of messages instead of using a conventional mixnet approach where servers take turns performing independent verifiable shuffles of user messages. We apply this technique to achieve both practical and asymptotic improvements in anonymous broadcast and messaging systems. We first show how to build a three server anonymous broadcast scheme, secure against one malicious server, that relies only on symmetric cryptography. Next, we adapt our three server broadcast scheme to a $k$-server scheme secure against $k-1$ malicious servers, at the cost of a more expensive per-shuffle preprocessing phase. Finally, we show how our scheme can be used to significantly improve the performance of the MCMix anonymous messaging system.

We implement our shuffling protocol in a system called Clarion and find that it outperforms a mixnet made up of a sequence of verifiable (single-server) shuffles by $9.2\times$ for broadcasting small messages and outperforms the MCMix conversation protocol by $11.8\times$.

Category / Keywords: cryptographic protocols / anonymous communication, metadata-hiding communication

Original Publication (with minor differences): NDSS 2022

Date: received 15 Nov 2021

Contact author: saba at cs unc edu

Available format(s): PDF | BibTeX Citation

Version: 20211120:225349 (All versions of this report)

Short URL: ia.cr/2021/1514


[ Cryptology ePrint archive ]