DOCSLIB.ORG

Understanding the Usage of Anonymous Onion Services Empirical Experiments to Study Criminal Activities in the Tor Network

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

JUHA NURMI Understanding the Usage of Anonymous Onion Services Empirical Experiments to Study Criminal Activities in the Tor Network Tampere University Dissertations 62 ! "#" # $ %& '!( " ! ( '!( ! ( " ! ! ! % $( ! ! )*+, (%-..( . *%% / % *0!(!.1 "#" # %'!( ! ( " ! ! ! ' ( ! 2 ) (()( ' ( 2 2 (( !" ($ &3. 211$ 2(( -( & ( $ !!. ( "!. !1 " 4+*, " 5 !1 ),678,98+:8*+,+89; < ),678,98+:8*+,*8;< /7,8,7+; < /,+8++7;< 5== 1 =5 )5,678,98+:8*+,*8 2 >3( PREFACE To tell You the truth, I would love to borrow the flying whip of words of Ralph Waldo Emerson, playfulness of scientific text from Carl Sagan, and from the ancient stoics their powerful touch in textual matter. It is generally considered a mark of inexperience to write if a book begins with a few lines about ancient Rome. Never- theless, as an inexperienced writer, I am delighted to do my mistake by referring to emperor Marcus Aurelius, who ruled Rome from 161 to 180 AD. He has a reputa- tion for being the only wise philosopher king in the history of humans. Essentially in his nightly diary, Meditations, he wrote that ”Nothing has such power to broaden the mind as the ability to investigate systemati- cally and truly all that comes under thy observation in life.” This is the real preface for a scientific inquiry. To me, during 2010, it meant that I wanted to study what kind of websites there are on Tor. But there was no search engine available for anonymous onion websites in the Tor network. What could I do? I registered ahmia.fi domain and started to create my own search engine for the Tor network. It was the starting point of my journey to understand how people use these anonymous onion services. I guess we can see the path only afterwards and under- stand that we were meant to walk it. It is time to summarise this research and thank everyone on this path. The dissertation was written with the help of Laboratory of Pervasive Comput- ing at Tampere University of Technology. Information security company Cyber Intelligence House greatly supported my work. Furthermore, people behind the Tor Project supported me. Professor Billy Bob Brumley served as the supervisor of this dissertation. I am deeply grateful to Billy. When the student is ready, the wise supervisor will appear. Feedback of pre-examiners assistant professor Diana Dolliver and assistant pro- fessor Damon McCoy allowed me to take the precision and scientific quality of this iii dissertation to the next level. I would like to express my sincere gratitude to Mikko Niemelä, Joona Kannisto, Markku Vajaranta, professor Atte Oksanen, Teemu Kaskela and Jussi Perälä, who all wrote the research papers with me. Warm thanks to my few friends, for all the good times. Special thanks to my wife who understands me better than anyone else. Teamwork is essential for success. So I would like to take this opportunity to thank my colleagues with whom I enjoyed working with in my path in different organizations. Feel free to send your feedback on these thesis and other aspects of this work to juha.nurmi@ahmia.fi. Furthermore, https://ahmia.fi/ - my very own search engine - enables you to search onion websites. Wishing You a safe journey inside the Tor anonymity network! iv ABSTRACT Technology is the new host of life, and with each passing year, developments in digitalization make it easier to destroy our understanding of authenticity. A man is more than his distorted shadow on Facebook wall. Another essential shadow dwells under anonymity. The aim of this thesis is to understand the usage of onion services in the Tor anonymity network. To be more precise the aim is to discover and measure human activities on Tor and on anonymous onion websites. We establish novel facts in the anonymous online environment. We solve technical problems, such as web-crawling and scraping to gather data. We represent new findings on how onion services hide illegal activities. The results are merged with wider range of anonymous onion ser- vices usage. We selected to cast light to the criminal dark side of the Tor network, mainly black marketplaces and hacking. This is a somewhat factitious selection from the wide range of Tor use. However, an archetype villain is found in nearly every story so naturally, for the sake of being interesting, we selected criminal phenomenon to study. To be clear, the Tor network is developed and utilised for legal online privacy and several other essential ways. The first finding is that as the Tor network becomes more popular also illegal activities become wide spread. Tor and virtual currencies are already transforming drug trade. Anonymous high-class marketplaces are difficult for the law enforcement to interrupt. On the other hand, now illegal activities are paradoxically more public than ever: everyone can access these onion sites and browse the product listings. The illegal trade is transparent to be followed. For example, by the means of web-crawling and scraping, we produced nearly real-time picture of the trade in Finland following one of the marketplaces on Tor. As a result, statistics shed light on substance consump- tion habits: the second study estimates that sales totalled over two million euros v between Finnish buyers and sellers. Due to the network’s anonymity and nature of illegal sales, reputation systems have replaced the rule of law: a buyer trusts the seller’s reputation because the law is not guaranteeing the delivery. The only available information is the seller’s repu- tation and capacity which were both associated with drug sales as we prove. Finally, we will identify the limits of online anonymity ranging from technical limitations to operation security dangers. Technology is merely a communication channel and major criminal activities still happen in the physical world. For in- stance, a drug trade requires that the seller sends the products using post service to the buyer’s address. Before that the seller has acquired enormous amounts of ille- gal drugs. The buyer has to give away his address to the seller who could later be placed under arrest with a list of customers addresses. Furthermore, we show case by case how criminals reveal and leak their critical identity information. The law enforcement agencies are experienced to investigate all of these aspects even if the Tor network itself is secure. vi CONTENTS 1 Introduction . 13 1.1 Objectives and contributions of the dissertation . 16 1.2 Structure of this thesis . 18 1.3 Research methods and restrictions . 19 1.3.1 Tradition of methodology . 19 1.3.2 Scope and restrictions . 21 2 Background of online anonymity environment and related research . 23 2.1 A brief history of the Internet and its revolutionary ethos . 24 2.2 Defining online privacy . 26 2.2.1 What is privacy? . 26 2.2.2 Internet privacy . 27 2.3 Characterization of online anonymity . 29 2.3.1 Evolution of anonymity systems . 29 2.3.1.1 Type 0: remailing system . 29 2.3.1.2 Type I: the Cypherpunk remailer . 31 2.3.1.3 Type II and III: Mixmaster remailer . 32 2.4 Tor enabling strong practical anonymity . 33 2.5 Onion websites on Tor . 37 2.6 Decentralised digital currency revolution . 40 2.7 Earlier research on Tor usage . 42 2.8 Earlier research on marketplaces operated on Tor . 45 3 Investigating usage of onion services . 49 vii 3.1 Limits of anonymity . 50 3.1.1 Operation security is difficult . 52 3.1.2 Weak security of the end user device . 56 3.1.3 Unintentional features of server software behind Tor . 57 3.1.4 Special conditions enable traffic and timing correlation attack 60 3.2 Watching incoming traffic to onion honeypots . 63 3.3 Following illegal trade on black markets . 64 3.3.1 The marketplace . 64 3.3.2 The insider with many names . 67 3.3.3 Administration’s point of view to anonymous conversation . 70 4 Understanding the results . 73 4.1 Motivations and limitations of anonymity . 74 4.2 Anatomy of the marketplace . 77 4.3 Technical research methods to understand marketplaces . 78 5 Conclusions . 81 6 Discussion . 83 6.1 Author’s final words . 84 References . 87 Publication I . 101 Publication II . 111 Publication III . 119 Publication IV . 129 Publication V . 147 viii ABBREVIATIONS AES Advanced Encryption Standard DARPA Defense Advanced Research Projects Agency DDoS attack Distributed Denial-of-Service attack DHCP Dynamic Host Configuration Protocol DHT Distributed Hash Table DNS Domain Name System DPI Deep packet inspection FBI Federal Bureau of Investigation GCHQ British Government Communications Headquarters GDPR General Data Protection Regulation HSDir Hidden Service Directory HTTP Hypertext Transfer Protocol HTTPS HTTP Secure IP address Internet Protocol address MITM attack Man-in-the-middle attack NAT Network Address Translators NSA National Security Agency OPSEC Operational Security PESTEL Political, Economic, Social, Technological, Environmental and Legal factor analysis PGP Pretty Good Privacy ix SMTP Simple Mail Transfer Protocol SSH Secure Shell TCP Transmission Control Protocol TLS Transport Layer Security Tor The Onion Routing UDP User Datagram Protocol x LIST OF PUBLICATIONS This dissertation is a compilation of five publications, of which two (publications I and III) are journal articles, three ( II IV and V) appear in conference proceedings. Finnish Publication Forum1 ratings indicate the quality of the publication chan- nels. The classification has three levels: 1 is basic; 2 is leading; 3 is top. Other iden- tified publication channels which have not received rating are marked with 0. The publications are reproduced with kind permissions from the publishers (THL, IEEE, Springer and Elsevier). I Nurmi, J., Kaskela, T. (2015). “Silkkitie. Päihteiden suomalaista nappikaup- paa.” Yhteiskuntapolitiikka, vol 80, no. 4, pp. 387–394. [1] Publication Forum level 2.
Recommended publications
  • UC Santa Barbara UC Santa Barbara Electronic Theses and Dissertations

    UC Santa Barbara UC Santa Barbara Electronic Theses and Dissertations

    UC Santa Barbara UC Santa Barbara Electronic Theses and Dissertations Title A Web of Extended Metaphors in the Guerilla Open Access Manifesto of Aaron Swartz Permalink https://escholarship.org/uc/item/6w76f8x7 Author Swift, Kathy Publication Date 2017 Peer reviewed|Thesis/dissertation eScholarship.org Powered by the California Digital Library University of California UNIVERSITY OF CALIFORNIA Santa Barbara A Web of Extended Metaphors in the Guerilla Open Access Manifesto of Aaron Swartz A dissertation submitted in partial satisfaction of the requirements for the degree Doctor of Philosophy in Education by Kathleen Anne Swift Committee in charge: Professor Richard Duran, Chair Professor Diana Arya Professor William Robinson September 2017 The dissertation of Kathleen Anne Swift is approved. ................................................................................................................................ Diana Arya ................................................................................................................................ William Robinson ................................................................................................................................ Richard Duran, Committee Chair June 2017 A Web of Extended Metaphors in the Guerilla Open Access Manifesto of Aaron Swartz Copyright © 2017 by Kathleen Anne Swift iii ACKNOWLEDGEMENTS I would like to thank the members of my committee for their advice and patience as I worked on gathering and analyzing the copious amounts of research necessary to
  • Applications Log Viewer

    Applications Log Viewer

    4/1/2017 Sophos Applications Log Viewer MONITOR & ANALYZE Control Center Application List Application Filter Traffic Shaping Default Current Activities Reports Diagnostics Name * Mike App Filter PROTECT Description Based on Block filter avoidance apps Firewall Intrusion Prevention Web Enable Micro App Discovery Applications Wireless Email Web Server Advanced Threat CONFIGURE Application Application Filter Criteria Schedule Action VPN Network Category = Infrastructure, Netw... Routing Risk = 1-Very Low, 2- FTPS-Data, FTP-DataTransfer, FTP-Control, FTP Delete Request, FTP Upload Request, FTP Base, Low, 4... All the Allow Authentication FTPS, FTP Download Request Characteristics = Prone Time to misuse, Tra... System Services Technology = Client Server, Netwo... SYSTEM Profiles Category = File Transfer, Hosts and Services Confe... Risk = 3-Medium Administration All the TeamViewer Conferencing, TeamViewer FileTransfer Characteristics = Time Allow Excessive Bandwidth,... Backup & Firmware Technology = Client Server Certificates Save Cancel https://192.168.110.3:4444/webconsole/webpages/index.jsp#71826 1/4 4/1/2017 Sophos Application Application Filter Criteria Schedule Action Applications Log Viewer Facebook Applications, Docstoc Website, Facebook Plugin, MySpace Website, MySpace.cn Website, Twitter Website, Facebook Website, Bebo Website, Classmates Website, LinkedIN Compose Webmail, Digg Web Login, Flickr Website, Flickr Web Upload, Friendfeed Web Login, MONITOR & ANALYZE Hootsuite Web Login, Friendster Web Login, Hi5 Website, Facebook Video
  • T U M a Digital Wallet Implementation for Anonymous Cash

    T U M a Digital Wallet Implementation for Anonymous Cash

    Technische Universität München Department of Informatics Bachelor’s Thesis in Information Systems A Digital Wallet Implementation for Anonymous Cash Oliver R. Broome Technische Universität München Department of Informatics Bachelor’s Thesis in Information Systems A Digital Wallet Implementation for Anonymous Cash Implementierung eines digitalen Wallets for anonyme Währungen Author Oliver R. Broome Supervisor Prof. Dr.-Ing. Georg Carle Advisor Sree Harsha Totakura, M. Sc. Date October 15, 2015 Informatik VIII Chair for Network Architectures and Services I conrm that this thesis is my own work and I have documented all sources and material used. Garching b. München, October 15, 2015 Signature Abstract GNU Taler is a novel approach to digital payments with which payments are performed with cryptographically generated representations of actual currencies. The main goal of GNU Taler is to allow taxable anonymous payments to non-anonymous merchants. This thesis documents the implementation of the Android version of the GNU Taler wallet, which allows users to create new Taler-based funds and perform payments with them. Zusammenfassung GNU Taler ist ein neuartiger Ansatz für digitales Bezahlen, bei dem Zahlungen mit kryptographischen Repräsentationen von echten Währungen getätigt werden. Das Hauptziel von GNU Taler ist es, versteuerbare, anonyme Zahlungen an nicht-anonyme Händler zu ermöglichen. Diese Arbeit dokumentiert die Implementation der Android-Version des Taler-Portemonnaies, der es Benutzern erlaubt, neues Taler-Guthaben zu erzeugen und mit ihnen Zahlungen zu tätigen. I Contents 1 Introduction 1 1.1 GNU Taler . .2 1.2 Goals of the thesis . .2 1.3 Outline . .3 2 Implementation prerequisites 5 2.1 Native libraries . .5 2.1.1 Libgcrypt .
  • Introduction Points

    Introduction Points

    Introduction Points Ahmia.fi - Clearnet search engine for Tor Hidden Services (allows you to add new sites to its database) TORLINKS Directory for .onion sites, moderated. Core.onion - Simple onion bootstrapping Deepsearch - Another search engine. DuckDuckGo - A Hidden Service that searches the clearnet. TORCH - Tor Search Engine. Claims to index around 1.1 Million pages. Welcome, We've been expecting you! - Links to basic encryption guides. Onion Mail - SMTP/IMAP/POP3. ***@onionmail.in address. URSSMail - Anonymous and, most important, SECURE! Located in 3 different servers from across the globe. Hidden Wiki Mirror - Good mirror of the Hidden Wiki, in the case of downtime. Where's pedophilia? I WANT IT! Keep calm and see this. Enter at your own risk. Site with gore content is well below. Discover it! Financial Services Currencies, banks, money markets, clearing houses, exchangers. The Green Machine Forum type marketplace for CCs, Paypals, etc.... Some very good vendors here!!!! Paypal-Coins - Buy a paypal account and receive the balance in your bitcoin wallet. Acrimonious2 - Oldest escrowprovider in onionland. BitBond - 5% return per week on Bitcoin Bonds. OnionBC Anonymous Bitcoin eWallet, mixing service and Escrow system. Nice site with many features. The PaypalDome Live Paypal accounts with good balances - buy some, and fix your financial situation for awhile. EasyCoin - Bitcoin Wallet with free Bitcoin Mixer. WeBuyBitcoins - Sell your Bitcoins for Cash (USD), ACH, WU/MG, LR, PayPal and more. Cheap Euros - 20€ Counterfeit bills. Unbeatable prices!! OnionWallet - Anonymous Bitcoin Wallet and Bitcoin Laundry. BestPal BestPal is your Best Pal, if you need money fast. Sells stolen PP accounts.
  • Tor: the Second-Generation Onion Router (2014 DRAFT V1)

    Tor: the Second-Generation Onion Router (2014 DRAFT V1)

    Tor: The Second-Generation Onion Router (2014 DRAFT v1) Roger Dingledine Nick Mathewson Steven Murdoch The Free Haven Project The Free Haven Project Computer Laboratory [email protected] [email protected] University of Cambridge [email protected] Paul Syverson Naval Research Lab [email protected] Abstract Perfect forward secrecy: In the original Onion Routing We present Tor, a circuit-based low-latency anonymous com- design, a single hostile node could record traffic and later munication service. This Onion Routing system addresses compromise successive nodes in the circuit and force them limitations in the earlier design by adding perfect forward se- to decrypt it. Rather than using a single multiply encrypted crecy, congestion control, directory servers, integrity check- data structure (an onion) to lay each circuit, Tor now uses an ing, configurable exit policies, anticensorship features, guard incremental or telescoping path-building design, where the nodes, application- and user-selectable stream isolation, and a initiator negotiates session keys with each successive hop in practical design for location-hidden services via rendezvous the circuit. Once these keys are deleted, subsequently com- points. Tor is deployed on the real-world Internet, requires promised nodes cannot decrypt old traffic. As a side benefit, no special privileges or kernel modifications, requires little onion replay detection is no longer necessary, and the process synchronization or coordination between nodes, and provides of building circuits is more reliable, since the initiator knows a reasonable tradeoff between anonymity, usability, and ef- when a hop fails and can then try extending to a new node.
  • Balancing Privacy and Accountability in Digital Payment Methods Using Zk-Snarks

    Balancing Privacy and Accountability in Digital Payment Methods Using Zk-Snarks

    1 Faculty of Electrical Engineering, Mathematics & Computer Science Balancing privacy and accountability in digital payment methods using zk-SNARKs Tariq Bontekoe M.Sc. Thesis October 2020 Supervisors: prof. dr. M. J. Uetz (UT) dr. M. H. Everts (TNO/UT) dr. B. Manthey (UT) dr. A. Peter (UT) Department Applied Mathematics Discrete Mathematics & Mathematical Programming Department Computer Science 4TU Cyber Security Faculty of Electrical Engineering, Mathematics and Computer Science University of Twente Preface This thesis concludes my seven years (and a month) as a student. During all these years I have certainly enjoyed myself and feel proud of everything I have done and achieved. Not only have I completed a bachelor’s in Applied Mathematics, I have also spent a year as a board member of my study association W.S.G. Abacus, spent a lot of time as a student assistant, and have made friends for life. I have really enjoyed creating this final project, in all its ups and downs, that concludes not only my master’s in Applied Mathematics but also that in Computer Science. This work was carried out at TNO in Groningen in the department Cyber Security & Ro- bustness. My time there has been amazing and the colleagues in the department have made that time even better. I am also happy to say that I will continue my time there soon. There are quite some people I should thank for helping my realise this thesis. First of all, my main supervisor Maarten who helped me with his constructive feedback, knowledge of blockchains and presence at both TNO and my university.
  • An Investigative Study of Cryptocurrency Abuses in the Dark Web

    An Investigative Study of Cryptocurrency Abuses in the Dark Web

    Cybercriminal Minds: An investigative study of cryptocurrency abuses in the Dark Web Seunghyeon Leeyz Changhoon Yoonz Heedo Kangy Yeonkeun Kimy Yongdae Kimy Dongsu Hany Sooel Sony Seungwon Shinyz yKAIST zS2W LAB Inc. {seunghyeon, kangheedo, yeonk, yongdaek, dhan.ee, sl.son, claude}@kaist.ac.kr {cy}@s2wlab.com Abstract—The Dark Web is notorious for being a major known as one of the major drug trading sites [13], [22], and distribution channel of harmful content as well as unlawful goods. WannaCry malware, one of the most notorious ransomware, Perpetrators have also used cryptocurrencies to conduct illicit has actively used the Dark Web to operate C&C servers [50]. financial transactions while hiding their identities. The limited Cryptocurrency also presents a similar situation. Apart from coverage and outdated data of the Dark Web in previous studies a centralized server, cryptocurrencies (e.g., Bitcoin [58] and motivated us to conduct an in-depth investigative study to under- Ethereum [72]) enable people to conduct peer-to-peer trades stand how perpetrators abuse cryptocurrencies in the Dark Web. We designed and implemented MFScope, a new framework which without central authorities, and thus it is hard to identify collects Dark Web data, extracts cryptocurrency information, and trading peers. analyzes their usage characteristics on the Dark Web. Specifically, Similar to the case of the Dark Web, cryptocurrencies MFScope collected more than 27 million dark webpages and also provide benefits to our society in that they can redesign extracted around 10 million unique cryptocurrency addresses for Bitcoin, Ethereum, and Monero. It then classified their usages to financial trading mechanisms and thus motivate new business identify trades of illicit goods and traced cryptocurrency money models, but are also adopted in financial crimes (e.g., money flows, to reveal black money operations on the Dark Web.
  • Torward: DISCOVERY, BLOCKING, and TRACEBACK of MALICIOUS TRAFFIC OVER Tor 2517

    Torward: DISCOVERY, BLOCKING, and TRACEBACK of MALICIOUS TRAFFIC OVER Tor 2517

    IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, VOL. 10, NO. 12, DECEMBER 2015 2515 TorWard: Discovery, Blocking, and Traceback of Malicious Traffic Over Tor Zhen Ling, Junzhou Luo, Member, IEEE,KuiWu,Senior Member, IEEE, Wei Yu, and Xinwen Fu Abstract— Tor is a popular low-latency anonymous communi- I. INTRODUCTION cation system. It is, however, currently abused in various ways. OR IS a popular overlay network that provides Tor exit routers are frequently troubled by administrative and legal complaints. To gain an insight into such abuse, we designed Tanonymous communication over the Internet for and implemented a novel system, TorWard, for the discovery and TCP applications and helps fight against various Internet the systematic study of malicious traffic over Tor. The system censorship [1]. It serves hundreds of thousands of users and can avoid legal and administrative complaints, and allows the carries terabyte of traffic daily. Unfortunately, Tor has been investigation to be performed in a sensitive environment such abused in various ways. Copyrighted materials are shared as a university campus. An intrusion detection system (IDS) is used to discover and classify malicious traffic. We performed through Tor. The black markets (e.g., Silk Road [2], an comprehensive analysis and extensive real-world experiments to online market selling goods such as pornography, narcotics validate the feasibility and the effectiveness of TorWard. Our or weapons1) can be deployed through Tor hidden service. results show that around 10% Tor traffic can trigger IDS alerts. Attackers also run botnet Command and Control (C&C) Malicious traffic includes P2P traffic, malware traffic (e.g., botnet servers and send spam over Tor.
  • Peer to Peer Resources

    Peer to Peer Resources

    Peer To Peer Resources By Marcus P. Zillman, M.S., A.M.H.A. Executive Director – Virtual Private Library [email protected] This January 2009 column Peer To Peer Resources is a comprehensive list of peer to peer resources, sources and sites available over the Internet and the World Wide Web including peer to peer, file sharing, and grid and matrix search engines. The below list is taken from the peer to peer research section of my Subject Tracer™ Information Blog titled Deep Web Research and is constantly updated with Subject Tracer™ bots at the following URL: http://www.DeepWebResearch.info/ These resources and sources will help you to discover the many pathways available to you through the Internet for obtaining and locating peer to peer sources in todays rapidly changing data procurement society. This is a MUST information keeper for those seeking the latest and greatest peer to peer resources! Peer To Peer Resources: ALPINE Network - SourceForge: Project http://sourceforge.net/projects/alpine/ An Efficient Scheme for Query Processing on Peer-to-Peer Networks http://aeolusres.homestead.com/files/index.html angrycoffee.com http://www.AngryCoffee.com/ Azureus - Vuze Java Bittorrent Client http://azureus.sourceforge.net/ 1 January 2009 Zillman Column – Peer To Peer Resources http://www.zillmancolumns.com/ [email protected] © 2009 Marcus P. Zillman, M.S., A.M.H.A. BadBlue http://badblue.com/ Between Rhizomes and Trees: P2P Information Systems by Bryn Loban http://firstmonday.org/htbin/cgiwrap/bin/ojs/index.php/fm/article/view/1182
  • Digital Trade Coin: Towards a More Stable Digital Currency Rsos.Royalsocietypublishing.Org Alex Lipton, Thomas Hardjono and Alex Pentland

    Digital Trade Coin: Towards a More Stable Digital Currency Rsos.Royalsocietypublishing.Org Alex Lipton, Thomas Hardjono and Alex Pentland

    Digital trade coin: towards a more stable digital currency rsos.royalsocietypublishing.org Alex Lipton, Thomas Hardjono and Alex Pentland MIT Connection Science, Massachusetts Institute of Technology, Cambridge, MA, USA Research TH, """"-"""#-('&)-()*" Cite this article: Lipton A, Hardjono T, We study the evolution of ideas related to creation of asset- Pentland A. !"#$ Digital trade coin: towards a backed currencies over the last 200 years and argue that recent more stable digital currency. R. Soc. open sci. developments related to distributed ledger technologies and !: #$"#%%. blockchains give asset-backed currencies a new lease of life. We http://dx.doi.org/#".#"&$/rsos.#$"#%% propose a practical mechanism combining novel technological breakthroughs with well-established hedging techniques for building an asset-backed transactional oriented cryptocurrency, which we call the digital trade coin (DTC). We show that in its Received: '# January !"#$ mature state, the DTC can serve as a much-needed counterpoint Accepted: #$ June !"#$ to fiat reserve currencies of today. #. Introduction Subject Category: This paper describes the concept of the asset-backed digital Computer science trade coins (DTCs), currently under development at MIT [1]. It outlines an approach to building a consortium of sponsors, Subject Areas: who contribute real assets, a narrow bank handling financial cryptography/human-computer transactions involving fiat currencies, and an administrator, who interaction/software issues the corresponding digital token in exchange for fiat payments and makes fiat payments in exchange for digital tokens. Keywords: In short, our proposal is to apply distributed ledger technology to blockchain technology, digital currency, give a new lease of life to the old notion of a sound asset-backed currency, and to use this currency as a transactional tool for a large electronic cash pool of potential users, including small and medium enterprises and individuals.
  • Escaping the Ossification Trap with Gnunet

    Escaping the Ossification Trap with Gnunet

    Escaping the Ossification Trap with GNUnet Christian Grothoff BFH & The GNU Project 25.1.2018 \We shape our tools, and thereafter our tools shape us". {John Culkin What can be done? I Democracies are slow ) Effective regulation of mega-corporations exists only under dictatorships Dictatorship or Corpocracy? Regulation? I Charles Stross (@34c4) warns: Companies are AIs that develop faster than the law I Julia Reda (@IGF) warns: Regulation of platforms paradoxically can give them more power Regulation? I Charles Stross (@34c4) warns: Companies are AIs that develop faster than the law I Julia Reda (@IGF) warns: Regulation of platforms paradoxically can give them more power I Democracies are slow ) Effective regulation of mega-corporations exists only under dictatorships Dictatorship or Corpocracy? Better Technology! Data protection! Decentralization! Self-Organization! Technological impact assessment!1 1Difficult, but better than design-by-buzzword! Technological impact assessment case-study: Name systems DNS/DNSSEC DNS Server Root Zone a.root-servers.net. www.example.com? a.gtld-servers.net.test E2D3C9.... DNSSEC Trust Anchor NS . S4LXnQiBS... 49AAC1... DS RRSIG www.example.com? Recursive DNS Server Stub www.example.com? Name .com Resolver Server NS a.gtld-servers.net.test a.gtld-servers.net. A 93.184.216.119 DS 3490A6.... RRSIG example.com. K0rp9n... RRSIG com. U/ZW6P3c... AD www.example.com? RRSIG A 93.184.216.119 example.com. K0rp9n... DNS Server example.com a.iana-servers.net. RAINS Authority Server Root Zone 44 ) com ZK ; :registry www.example.com?
  • Analysing the MUTE Anonymous File-Sharing System Using the Pi-Calculus

    Analysing the MUTE Anonymous File-Sharing System Using the Pi-Calculus

    Analysing the MUTE Anonymous File-Sharing System Using the Pi-calculus Tom Chothia CWI, Kruislaan 413, 1098 SJ, Amsterdam, The Netherlands. Abstract. This paper gives details of a formal analysis of the MUTE system for anonymous file-sharing. We build pi-calculus models of a node that is innocent of sharing files, a node that is guilty of file-sharing and of the network environment. We then test to see if an attacker can dis- tinguish between a connection to a guilty node and a connection to an innocent node. A weak bi-simulation between every guilty network and an innocent network would be required to show possible innocence. We find that such a bi-simulation cannot exist. The point at which the bi- simulation fails leads directly to a previously undiscovered attack on MUTE. We describe a fix for the MUTE system that involves using au- thentication keys as the nodes’ pseudo identities and give details of its addition to the MUTE system. 1 Introduction MUTE is one of the most popular anonymous peer-to-peer file-sharing systems1. Peers, or nodes, using MUTE will connect to a small number of other, known nodes; only the direct neighbours of a node know its IP address. Communication with remote nodes is provided by sending messages hop-to-hop across this overlay network. Routing messages in this way allows MUTE to trade efficient routing for anonymity. There is no way to find the IP address of a remote node, and direct neighbours can achieve a level of anonymity by claiming that they are just forwarding requests and files for other nodes.