Proactively Accountable Anonymous Messaging in Verdict

Among anonymity systems, DC-nets have long held attraction for their resistance to traffic analysis attacks, but practical implementations remain vulnerable to internal disruption or "jamming" attacks, which require time-consuming detection procedures to resolve. We present Verdict, the first practical anonymous group communication system built using proactively verifiable DC-nets: participants use public-key cryptography to construct DC-net ciphertexts, and use zero-knowledge proofs of knowledge to detect and exclude misbehavior before disruption. We compare three alternative constructions for verifiable DC-nets: one using bilinear maps and two based on simpler ElGamal encryption. While verifiable DC-nets incur higher computational overheads due to the public-key cryptography involved, our experiments suggest that Verdict is practical for anonymous group messaging or microblogging applications, supporting groups of 100 clients at 1 second per round or 1000 clients at 10 seconds per round. Furthermore, we show how existing symmetric-key DC-nets can "fall back" to a verifiable DC-net to quickly identify misbehavior, speeding up previous detections schemes by two orders of magnitude.

• Publication year

  2012

• Venue

  USENIX Security Symposium

• Publication date

  2012-09-21

• Fields of study

  Computer Science

• Identifiers
  arXiv 1209.4819
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• SkypeMorph: protocol obfuscation for Tor bridges

  2012cited by this paper
• Dissent in Numbers: Making Strong Anonymity Scale

  2012influential reference
• Scalable Anonymous Group Communication in the Anytrust Model

  2012cited by this paper
• LAP: Lightweight Anonymity and Privacy

  2012cited by this paper
• Website fingerprinting in onion routing based anonymization networks

  2011cited by this paper
• Dissent: accountable anonymous group messaging

  2010cited by this paper
• Membership-concealing overlay networks

  2009cited by this paper
• Sybil-Resilient Online Content Voting

  2009cited by this paper
• Sampled Traffic Analysis by Internet-Exchange-Level Adversaries

  2007cited by this paper
• On the implementation of pairing-based cryptosystems

  2007cited by this paper
• Traceable Ring Signature

  2007cited by this paper
• Low-resource routing attacks against tor

  2007cited by this paper
• Denial of Service or Denial of Security? How Attacks on Reliability can Compromise Anonymity

  2007cited by this paper
• Efficient anonymity-preserving data collection

  2006cited by this paper
• SybilGuard: Defending Against Sybil Attacks via Social Networks

  2006cited by this paper
• Low-cost traffic analysis of Tor

  2005cited by this paper
• Dining Cryptographers Revisited

  2004influential reference
• Linkable Spontaneous Anonymous Group Signature for Ad Hoc Groups (Extended Abstract)

  2004cited by this paper
• Mixmaster Protocol Version 2

  2004cited by this paper
• Efficient Selective-ID Secure Identity Based Encryption Without Random Oracles

  2004cited by this paper
• Tor: The Second-Generation Onion Router

  2004influential reference
• Efficient signature generation by smart cards

  2004cited by this paper
• Eluding carnivores: file sharing with strong anonymity

  2004cited by this paper
• Digital Speech and Democratic Culture: a Theory of Freedom of Expression for the Information Society

  2003cited by this paper
• Queers Anonymous: Lesbians, Gay Men, Free Speech, and Cyber Space

  2003cited by this paper
• k-anonymous message transmission

  2003cited by this paper
• Mixminion: design of a type III anonymous remailer protocol

  2003cited by this paper
• Herbivore: A Scalable and Efficient Protocol for Anonymous Communication

  2003cited by this paper
• The Sybil Attack

  2002cited by this paper
• Limits of Anonymity in Open Environments

  2002cited by this paper
• Tarzan: a peer-to-peer anonymizing network layer

  2002cited by this paper
• National Institute of Standards and Technologyにおける超伝導研究及び生活

  2001cited by this paper
• A verifiable secret shuffle and its application to e-voting

  2001influential reference
• Identity-Based Encryption from the Weil Pairing

  2001cited by this paper
• How to Leak a Secret: Theory and Applications of Ring Signatures

  2001cited by this paper
• An Efficient Scheme for Proving a Shuffle

  2001cited by this paper
• Practical Byzantine fault tolerance

  1999cited by this paper
• Anonymous Web transactions with Crowds

  1999cited by this paper
• Anonymous Communication Policies for the Internet: Results and Recommendations of the AAAS Conference

  1999cited by this paper
• A Simple Publicly Verifiable Secret Sharing Scheme and Its Application to Electronic

  1999cited by this paper
• The Decision Diffie-Hellman Problem

  1998cited by this paper
• Proof systems for general statements about discrete logarithms

  1997cited by this paper
• Proofs of Partial Knowledge and Simplified Design of Witness Hiding Protocols

  1994cited by this paper
• Harvard Civil Rights: Civil Liberties Law Review

  1993cited by this paper
• Random oracles are practical: a paradigm for designing efficient protocols

  1993cited by this paper
• Wallet Databases with Observers

  1992cited by this paper
• Unconditional Sender and Recipient Untraceability in Spite of Active Attacks

  1990cited by this paper
• The dining cryptographers problem: Unconditional sender and recipient untraceability

  1988influential reference
• How to Prove Yourself: Practical Solutions to Identification and Signature Problems

  1986cited by this paper
• A public key cryptosystem and a signature scheme based on discrete logarithms

  1984cited by this paper
• 2008 IEEE Symposium on Security and Privacy SybilLimit: A Near-Optimal Social Network Defense against Sybil Attacks

  year unknowncited by this paper

• Scaling Metadata-Private Messaging Under Hardware Trust

  2026cites this paper
• HRPACS: A Non-End-to-End Anonymous Communication System Based on Hybrid Routing Policies

  2026cites this paper
• Deniable Identity-Based Matchmaking Encryption for Anonymous Messaging

  2025cites this paper
• Silent Splitter: Privacy for Payment Splitting via New Protocols for Distributed Point Functions

  2025cites this paper
• sPAR: (Somewhat) Practical Anonymous Router

  2025cites this paper
• Metadata-private Messaging without Coordination

  2025cites this paper
• Myco: Unlocking Polylogarithmic Accesses in Metadata-Private Messaging

  2025cites this paper
• Ring of Gyges: Accountable Anonymous Broadcast via Secret-Shared Shuffle

  2025cites this paper
• More Efficient Lattice-Based Verifiable Decryption from LWR

  2025cites this paper
• User Perceptions and Attitudes Toward Untraceability in Messaging Platforms

  2025cites this paper
• TEEMS: A Trusted Execution Environment based Metadata-protected Messaging System

  2025cites this paper
• PolySphinx: Extending the Sphinx Mix Format With Better Multicast Support

  2024cites this paper
• Rabbit-Mix: Robust Algebraic Anonymous Broadcast from Additive Bases

  2024cites this paper
• SoK: Metadata-Protecting Communication Systems

  2024cites this paper
• Divide and Funnel: A Scaling Technique for Mix-Networks

  2024cites this paper
• A Reliable Protocol for Data Aggregation and Optimized Routing in IoT WSNs based on Machine Learning

  2023cites this paper
• Asymmetric Group Message Franking: Definitions & Constructions

  2023cites this paper
• SoK: Content Moderation for End-to-End Encryption

  2023cites this paper
• UCoin: An Efficient Privacy Preserving Scheme for Cryptocurrencies

  2023cites this paper
• Abuse Reporting for Metadata-Hiding Communication Based on Secret Sharing

  2023cites this paper
• Practical privacy-preserving mixing protocol for Bitcoin

  2023cites this paper
• A Survey on Anonymous Communication Systems With a Focus on Dining Cryptographers Networks

  2022influential citation
• Metadata Privacy Beyond Tunneling for Instant Messaging

  2022cites this paper
• On Metadata Privacy in Instant Messaging

  2022influential citation
• Strong Anonymity for Mesh Messaging

  2022cites this paper
• Donar: Anonymous VoIP over Tor

  2022cites this paper
• Easy-to-Implement Two-Server based Anonymous Communication with Simulation Security

  2022cites this paper
• OrgAn: Organizational Anonymity with Low Latency

  2022influential citation
• Short Paper: Verifiable Decryption for BGV

  2022cites this paper
• With a Little Help from My Friends: Transport Deniability for Instant Messaging

  2022cites this paper
• Personalized Privacy Protection Solutions

  2021cites this paper
• Improving Signal's Sealed Sender

  2021cites this paper
• Clarion: Anonymous Communication from Multiparty Shuffling Protocols

  2021cites this paper
• Aloha: Metadata-private voice communication over fully untrusted infrastructure

  2021cites this paper
• Fighting Fake News in Encrypted Messaging with the Fuzzy Anonymous Complaint Tally System (FACTS)

  2021cites this paper
• 2PPS — Publish/Subscribe with Provable Privacy

  2021cites this paper
• Strong Anonymity is not Enough: Introducing Fault Tolerance to Planet-Scale Anonymous Communication Systems

  2021influential citation
• Anonymous Data Reporting Strategy with Dynamic Incentive Mechanism for Participatory Sensing

  2021cites this paper
• hbACSS: How to Robustly Share Many Secrets

  2021cites this paper
• Incentives for Federated Learning: a Hypothesis Elicitation Approach

  2020cites this paper
• Aitac: an identity-based traceable anonymous communication model

  2020cites this paper
• DAML

  2020cites this paper
• Analyzing User-Level Privacy Attack Against Federated Learning

  2020cites this paper
• Blinder -- Scalable, Robust Anonymous Committed Broadcast

  2020influential citation
• Talek: Private Group Messaging with Hidden Access Patterns

  2020cites this paper
• Blinder – MPC Based Scalable and Robust Anonymous Committed Broadcast

  2020cites this paper
• Proving Server Faults: RPCs for Distributed Systems in Byzantine Networks

  2020cites this paper
• Another Look at Anonymous Communication

  2019cites this paper
• Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy

  2019cites this paper
• HSDC–Net: Secure Anonymous Messaging in Online Social Networks

  2019influential citation
• Simple and Efficient Approach for Achieving End-to-End Anonymous Communication

  2019cites this paper
• A survey of local differential privacy for securing internet of vehicles

  2019cites this paper
• Anonymous Communication via Anonymous Identity-Based Encryption and Its Application in IoT

  2018cites this paper
• An Accountable Anonymous Data Aggregation Scheme for Internet of Things

  2018cites this paper
• Beyond Inferring Class Representatives: User-Level Privacy Leakage From Federated Learning

  2018cites this paper
• PriFi: A Traffic-Analysis Resistant, Low-Latency Anonymous Communication Protocol for Local Area Networks

  2018cites this paper
• Building and evaluating privacy-preserving data processing systems

  2018cites this paper
• OnionCoin : peer-to-peer anonymous messaging with incentive system

  2018cites this paper
• Clients Server 1 Server 2 Server 3 Adversary payload payload t 1 t 2

  2017cites this paper
• Anonymity Trilemma: Strong Anonymity, Low Bandwidth Overhead, Low Latency—Choose Two

  2017cites this paper
• PriFi: A Low-Latency Local-Area Anonymous Communication Network

  2017cites this paper
• A Survey on Security and Privacy Issues in Internet-of-Things

  2017cites this paper
• From Dining Cryptographers to dining things: Unobservable communication in the IoT

  2017cites this paper
• Practical Secure Aggregation for Privacy-Preserving Machine Learning

  2017cites this paper
• Anonymity Trilemma: Strong Anonymity, Low Bandwidth Overhead, Low Latency - Choose Two

  2017cites this paper
• Prio: Private, Robust, and Scalable Computation of Aggregate Statistics

  2017cites this paper
• An anonymous data reporting strategy with ensuring incentives for mobile crowd-sensing

  2017cites this paper
• PriFi: Low-Latency Anonymity for Organizational Networks

  2017influential citation
• Two Cents for Strong Anonymity: The Anonymous Post-office Protocol

  2017cites this paper
• Practical Improvements to User Privacy in Cloud Applications

  2017influential citation
• PriFi: A Low-Latency and Tracking-Resistant Protocol for Local-Area Anonymous Communication

  2016cites this paper
• Decrypted Result Vector Ad Reporting CloudAd 1 ... Ad 2 Adn Single Trusted 3 rd Party Server Decrypt :

  2016cites this paper
• Open, privacy-preserving protocols for lawful surveillance

  2016cites this paper
• Practical Secure Aggregation for Federated Learning on User-Held Data

  2016cites this paper
• Footprint Scheduling for Dining-Cryptographer Networks

  2016cites this paper
• Scalable and Robust Distributed Algorithms for Privacy-Preserving Applications

  2016cites this paper
• Network level attacks and defenses against anonymity networks

  2016cites this paper
• Riffle

  2016cites this paper
• Another Look at Anonymous Communication - Security and Modular Constructions

  2016cites this paper
• A Protocol for Privately Reporting Ad Impressions at Scale

  2016cites this paper
• Scalable and Anonymous Group Communication with MTor

  2016cites this paper
• AnonRep: Towards Tracking-Resistant Anonymous Reputation

  2016cites this paper
• Untraceable VoIP Communication based on DC-nets

  2016cites this paper
• Secure Multi-party Shuffling

  2015cites this paper
• Scalable And Anonymous Group Communication

  2015influential citation
• Protecting Identity and Location Privacy in Online Environment

  2015cites this paper
• Deniable Key Exchanges for Secure Messaging

  2015cites this paper
• Anonymity-Based Privacy-Preserving Data Reporting for Participatory Sensing

  2015cites this paper
• Scalable And Anonymous Group Communication

  2015influential citation
• Riposte: An Anonymous Messaging System Handling Millions of Users

  2015cites this paper
• SoK: Secure Messaging

  2015influential citation
• Security Analysis of Accountable Anonymity in Dissent

  2014cites this paper
• Secure Anonymous Broadcast

  2014cites this paper
• BackRef: Accountability in Anonymous Communication Networks

  2014cites this paper
• Dining Cryptographers are Practical (preliminary version)

  2014cites this paper
• Dining Cryptographers with 0.924 Verifiable Collision Resolution

  2014cites this paper
• Beating the Birthday Paradox in Dining Cryptographer Networks

  2014cites this paper
• Hang with your buddies to resist intersection attacks

  2013cites this paper
• Seeking anonymity in an internet panopticon

  2013cites this paper
• Towards Provably-Secure Scalable Anonymous Broadcast

  2013cites this paper