欢迎您!东篱公司
退出
-
申报数据库
-
立项数据库
-
成果数据库
-
项目获奖数据库
中文摘要:
为了提高匿名通信系统的安全性,并在性能和匿名度之间取得更好的折中,建立了一种以用户平均可用带宽为性能指标、以攻击者同时占据链路出/入口概率为安全性指标的匿名通信系统评估方法,并在此基础上提出了一种新的基于随机带宽加权的匿名通信节点选择算法.该算法将匿名通信节点按带宽排序并分组,在节点组之间采用带宽加权选择方式,在组内则采取等概率随机节点选择策略,并通过在节点选择过程中引入随机因素来提高系统的安全性.针对Tor在线节点真实数据的实验测试结果表明,当选择合适的组内节点数时,可通过小幅降低系统性能为代价,取得更好的系统安全性.该算法为用户动态调节系统性能和安全性提供了有效途径.
英文摘要:
In order to improve the security of anonymous communication systems and achieve a better balance between performance and anonymity,a new evaluation approach is introduced in which the mean user available bandwidth is taken as the performance metric and the probability that an attacker occupies both the exit and entry nodes of a communication path simultaneously is adopted as the security metric.Furthermore,a new randomized bandwidth-weighted node selection algorithm is proposed according to the two metrics.All the anonymous communication nodes are first sorted and divided into different groups according to their bandwidths.And then the bandwidth-weighted selection is performed between node groups,whereas the nodes in the same group are selected with equal probability.The security of the anonymous communication systems are improved by introducing randomness to the node selections.The experiments on the real-world Tor nodes data are conducted and the results show that the higher security of the anonymous communication systems can be achieved at the cost of a little decrease of performance when the appropriate group size is chosen.The algorithm provides an effective way for users to tune up systems dynamically between security and performance.
同期刊论文项目
同项目期刊论文
位置: