Progressive Pruning: Analyzing the Impact of Intersection Attacks

TL;DR

This paper introduces progressive pruning, a new method to measure and analyze the vulnerability of stream-based anonymous communication networks like Tor to intersection attacks, revealing key factors affecting anonymity.

Contribution

The paper presents progressive pruning, a novel approach for quantifying intersection attack susceptibility and applies it to analyze the Tor network through simulations.

Findings

Anonymity is affected by stream length, user population, and distribution.

Progressive pruning effectively monitors anonymity sets over time.

Insights inform design improvements for ACNs against traffic analysis.

Abstract

Stream-based communication dominates today's Internet, posing unique challenges for anonymous communication networks (ACNs). Traditionally designed for independent messages, ACNs struggle to account for the inherent vulnerabilities of streams, such as susceptibility to intersection attacks. In this work, we address this gap and introduce progressive pruning, a novel methodology for quantifying the susceptibility to intersection attacks. Progressive pruning quantifies and monitors anonymity sets over time, providing an assessment of an adversary's success in correlating senders and receivers. We leverage this methodology to analyze synthetic scenarios and large-scale simulations of the Tor network using our newly developed TorFS simulator. Our findings reveal that anonymity is significantly influenced by stream length, user population, and stream distribution across the network. These insights highlight critical design challenges for future ACNs seeking to safeguard stream-based communication against traffic analysis attacks.