n33m3rz
March 30th, 2009, 05:07 AM
How would this work for a high latency anonymity network (designed for E-mails not surfing)
Ok there is a centralized server that distributes seed information. The central server gets the seed information from volunteers who set up mixes, the mix generates a seed that is used to plug a RNG and spit out a series of bits. The actual seed information can be matched up to users who publish their public keys on the central server, then the mix runners downloads the public key from the server and uses it to encrypt the seed then it tags it to the user and uploads it back to the server. If the adversary censors access to the server the client can find a seed from a friend or something or there can be big torrents full of seeds I guess. The mix also should encrypt a few websites that it will check (more on this later), plus the public key of an outproxy mix (also can be listed publicly and randomly pulled from the entry mix).
Anyways the client uses the seed to generate a long random name for a picture, video, song whatever. Then it takes the users message (and send to information) and encrypts it to the out proxy mixes public key. Then it hides the message in the named file and uploads it to a server like youtube, photobucket, really any server that allows uploading of user named content).
The entry mix periodically scans those websites for files of that name. When it finds them, it grabs them and holds them for a few hours mixing with other users messages. Then it sends them out to the exit mix. The exit mix decrypts the message and forwards it on to the receivers information (specified with in the encryption). The reply information should be included encrypted to the receiver to maintain anonymity.
So it would look sort of like this
Client ---> YouTube ----> Entry Mix -----> Photobucket -----> Exit mix ------> Receiver
the only way they could censor this is to ban access to ALL websites that allow for uploading of user named content. The entry mix never will know the clients IP and the client will never know the entry IP (they both know youtube IP though). Entry mix and Exit mix also don't know each others IP address (they just know to look at those websites for those named files thanks to the shared seed, and you can't really censor a file name like you can a IP address).
This is totally raw idea and not fortified but I think it is a good method for people who onl want to send anonymous messages to others, and live in very censored countries.
Thoughts?
Ok there is a centralized server that distributes seed information. The central server gets the seed information from volunteers who set up mixes, the mix generates a seed that is used to plug a RNG and spit out a series of bits. The actual seed information can be matched up to users who publish their public keys on the central server, then the mix runners downloads the public key from the server and uses it to encrypt the seed then it tags it to the user and uploads it back to the server. If the adversary censors access to the server the client can find a seed from a friend or something or there can be big torrents full of seeds I guess. The mix also should encrypt a few websites that it will check (more on this later), plus the public key of an outproxy mix (also can be listed publicly and randomly pulled from the entry mix).
Anyways the client uses the seed to generate a long random name for a picture, video, song whatever. Then it takes the users message (and send to information) and encrypts it to the out proxy mixes public key. Then it hides the message in the named file and uploads it to a server like youtube, photobucket, really any server that allows uploading of user named content).
The entry mix periodically scans those websites for files of that name. When it finds them, it grabs them and holds them for a few hours mixing with other users messages. Then it sends them out to the exit mix. The exit mix decrypts the message and forwards it on to the receivers information (specified with in the encryption). The reply information should be included encrypted to the receiver to maintain anonymity.
So it would look sort of like this
Client ---> YouTube ----> Entry Mix -----> Photobucket -----> Exit mix ------> Receiver
the only way they could censor this is to ban access to ALL websites that allow for uploading of user named content. The entry mix never will know the clients IP and the client will never know the entry IP (they both know youtube IP though). Entry mix and Exit mix also don't know each others IP address (they just know to look at those websites for those named files thanks to the shared seed, and you can't really censor a file name like you can a IP address).
This is totally raw idea and not fortified but I think it is a good method for people who onl want to send anonymous messages to others, and live in very censored countries.
Thoughts?