Skip to content

number571/micro-anon

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits
example
example
 
 
images
images
 
 
keygen
keygen
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
main.go
main.go
 
 

Repository files navigation

ma_logo.png

Anonymous network in 100 lines of code

Go License Activity Commits Awesome-Anonymity

About project

Warning

This anonymous network was written solely for the purpose of demonstrating the minimalism of the QB problem, and therefore it should be considered more as a template for modifications/editing than as a ready-made implementation. The implementation lacks an authentication mechanism, as well as mechanisms to counter DoS/DDoS attacks, spam and message repetition. You can read more about vulnerabilities and implementation-related issues at the end of this README.

The Micro-Anonymous network is based on a QB (queue-based) problem (also as Hidden Lake). The implementation uses only the standard library of the Go language. The goal of this network is to minimize the source code so that even a novice programmer can understand the entire mechanism of its functioning.

go run . [listen-address] [priv-key-file] [recv-key-file] [http-addr-1, http-addr-2, ...]

How it works

  1. Each message m is encrypted with the recipient's key k: c = Ek(m),
  2. Message c is sent during period = T to all network participants,
  3. The period T of one participant is independent of the periods T1, T2, ..., Tn of other participants,
  4. If there is no message for the period T, then a false message v is sent to the network without a recipient (with a random key r): c = Er(v),
  5. Each participant tries to decrypt the message they received from the network: m = Dk(c).

ma_qbp.png

Figure 1. QB-network with three nodes {A,B,C}

More information about QB networks in research paper: hidden_lake_anonymous_network.pdf

Build and run

# Terminal-1
$ go run . :7070 ./example/node2/priv.key ./example/node1/pub.key localhost:8080
# Terminal-2
$ go run . :8080 ./example/node1/priv.key ./example/node2/pub.key localhost:7070
# Terminal-1 <INPUT>
> hello
# Terminal-2 <OUTPUT>
> hello

Advantages

  1. Simplicity. The network is written without using third-party libraries, as well as without using hacks to pack it into 100 lines of code. As a result, even novice programmers can understand the logic of its operation, and even novice cryptographers can check for security.
  2. Anonymity. This network really provides a good level of anonymity, protecting against all passive observations, including attacks by a global observer. Active observations are also impossible, because it requires the implementation of the composition of the conditions: 1) the attacker knows your public key, 2) you often talk to several subscribers at once, 3) the attacker must be in the list of subscribers with whom you are actively talking. But the implementation lacks the ability to communicate with multiple subscribers, and therefore the second condition will never be fulfilled.

Disadvantages

  1. Lack of anonymity between interlocutors. The QB problem successfully anonymizes the fact of communication and communication between interlocutors from outside observers, including a global observer, but does not anonymize the communication of interlocutors to each other.
  2. The scalability problem. In the QB problem, each participant tries to decrypt the message he receives from the network, without knowing in advance whether it belongs to him. As a result, when the system is expanded, one message can be sent to all network participants, which leads to a dependence of the linear load on the number of nodes.

Vulnerabilities

  1. Lack of authentication. It is unknown which particular participant sent you the message and there is no authenticated data to confirm that the interlocutor is exactly who he was introduced to at the beginning of the conversation.
  2. DoS/DDoS attacks. An attacker can generate or collect many ciphertexts and send them to one node at a time, thereby overloading the processor power of the latter to perform decryption functions. Also, an attacker can generate large ciphertexts (or random bytes), thereby overloading the nodes' RAM due to the use of the io.ReadAll function.
  3. Spam. Due to the lack of F2F or other trusted connection mechanisms, each node can communicate with any other node in the network if it knows the public key. As a result, an attacker can send many meaningless messages from different accounts without being able to block it. The only way to counteract it is to change your own private key.
  4. Repeat messages. An attacker can copy the ciphertexts of the network and re-redirect them to a specific node due to the lack of verification of previously received messages. As a result, if the redirected ciphertext is true, the messages will be duplicated.

License

Licensed under the MIT License. See LICENSE for the full license text.

About

🕵🏻 Anonymous network in 100 lines of code

Topics

go golang cryptography network peer-to-peer decentralized messenger p2p anonymity anonymous qb-nets

Resources

Readme

License

MIT license
Activity

Stars

16 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases 1

v1.0.0-1 Latest
Oct 14, 2024

Packages

No packages published

Languages