可靠洋葱路由方案的设计与实现

在公开的计算机网络中采用洋葱路由能提供隐蔽网络连接，使得攻击者既不能窃听到机密也不能实施流量分析。然而现有的洋葱路由方案只能隐藏信息，并不能保证抵御以扰乱为目的的破坏性攻击。文中应用群签密技术，提出了一个既能隐藏信息又能防扰乱攻击的新的方案，并分析了其安全性。

An Authenticated Scheme of Onion Routing

Onion Routing on public computer networks is much like a physical envelope. The simple application of cryptography within a packet switched network provides anonymous connections by using the loose source routing protocol that are strongly resistant to both eavesdropping and traffic analysis so that it hides not only the contents of message being sent but also who is talking whom, and how often. Onion Routing is a general purpose infrastructure for private communication over a public network and the connections are bi directional, near real time, and can be used for both connection based and connectionless traffic. However, Onion Routing schemes available can hide informationbut can not prevent attacker form subversive attacks such as disturbing data packages, that is, the attacker do not want to know the contents of message being sent but make them confusion. When the contents of data packages have been disturbed, the data packages become message garbage. On the occasion, if the Onion Routing server continues to transmit the packages, it will reduce the whole network efficiency. To the worse, because the addresses in the package headers are also encrypted, the Onion Routing servers will disturb the whole network when they obtain wrong addresses. To solve this, a new scheme that hides information and prevents from disturbing data packages is proposed by using the efficient signcryption technique combined with the group signature technique and trust mark technique based on David's Onion Routing scheme. The goal of the new scheme is to enhance security and reliability of Onion Routing and to make it easy to integrate into existing systems (including IP v4 or IP v6). Finally, analysis of security on the proposed scheme is given.