[minion-cvs] Changed the diagram (caption on the left)

[gd@seul.org]

Update of /home/minion/cvsroot/doc
In directory moria.seul.org:/tmp/cvs-serv5673

Modified Files:
	headerDiagram.eps headerDiagram.fig minion-design.tex 
Log Message:
Changed the diagram (caption on the left)
Aligned the protocol equations.
Added what the mixminion network should do.



Index: headerDiagram.eps
===================================================================
RCS file: /home/minion/cvsroot/doc/headerDiagram.eps,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -d -r1.1 -r1.2
--- headerDiagram.eps	28 Oct 2002 19:07:10 -0000	1.1
+++ headerDiagram.eps	4 Nov 2002 17:29:33 -0000	1.2
@@ -1,9 +1,9 @@
 %!PS-Adobe-2.0 EPSF-2.0
 %%Title: headerDiagram.eps
 %%Creator: fig2dev Version 3.2 Patchlevel 3c
-%%CreationDate: Mon Oct 28 18:52:09 2002
+%%CreationDate: Mon Nov  4 16:58:28 2002
 %%For: gd216@rake.cl.cam.ac.uk (George Danezis)
-%%BoundingBox: 0 0 533 249
+%%BoundingBox: 0 0 537 249
 %%Magnification: 1.0000
 %%EndComments
 /$F2psDict 200 dict def
@@ -45,8 +45,8 @@
 
 end
 save
-newpath 0 249 moveto 0 0 lineto 533 0 lineto 533 249 lineto closepath clip newpath
--8.0 253.0 translate
+newpath 0 249 moveto 0 0 lineto 537 0 lineto 537 249 lineto closepath clip newpath
+-4.0 253.0 translate
 1 -1 scale
 
 /cp {closepath} bind def
@@ -90,106 +90,94 @@
 %
 % Fig objects follow
 %
+% Polyline
+7.500 slw
+n 7875 600 m 9000 600 l 9000 1575 l 7875 1575 l
+ cp gs col0 s gr 
 /Times-Roman ff 180.00 scf sf
-4275 750 m
-gs 1 -1 sc (First Leg Header) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-4275 990 m
-gs 1 -1 sc (16 sub headers) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-4275 1230 m
-gs 1 -1 sc (2kb size) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-4275 1500 m
-gs 1 -1 sc (Second Leg Header) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-4275 1740 m
-gs 1 -1 sc (16 sub headers) col0 sh gr
+7950 825 m
+gs 1 -1 sc (Version) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-4275 1980 m
-gs 1 -1 sc (2kb size) col0 sh gr
+7950 1065 m
+gs 1 -1 sc (Shared Secret) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-4275 2250 m
-gs 1 -1 sc (Payload ) col0 sh gr
+7950 1305 m
+gs 1 -1 sc (Digest) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-4275 2490 m
-gs 1 -1 sc (28kb size) col0 sh gr
+7950 1545 m
+gs 1 -1 sc (Next Address) col0 sh gr
 % Polyline
-7.500 slw
-n 150 1350 m 1275 1350 l 1275 2025 l 150 2025 l
+n 1575 1350 m 2700 1350 l 2700 2025 l 1575 2025 l
  cp gs col0 s gr 
 % Polyline
-n 150 2100 m 1275 2100 l 1275 4200 l 150 4200 l
+n 1575 2100 m 2700 2100 l 2700 4200 l 1575 4200 l
  cp gs col0 s gr 
 % Polyline
-n 150 600 m 1275 600 l 1275 1275 l 150 1275 l
+n 1575 600 m 2700 600 l 2700 1275 l 1575 1275 l
  cp gs col0 s gr 
 /Times-Roman ff 180.00 scf sf
-225 1725 m
+1650 1725 m
 gs 1 -1 sc (Sender Onion) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-225 975 m
+1650 975 m
 gs 1 -1 sc (Sender Onion) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-225 2325 m
+1650 2325 m
 gs 1 -1 sc (Payload) col0 sh gr
 % Polyline
-n 1575 600 m 2700 600 l 2700 1275 l 1575 1275 l
+n 3000 600 m 4125 600 l 4125 1275 l 3000 1275 l
  cp gs col0 s gr 
 % Polyline
-n 1575 1350 m 2700 1350 l 2700 2025 l 1575 2025 l
+n 3000 1350 m 4125 1350 l 4125 2025 l 3000 2025 l
  cp gs col0 s gr 
 % Polyline
-n 1575 2100 m 2700 2100 l 2700 4200 l 1575 4200 l
+n 3000 2100 m 4125 2100 l 4125 4200 l 3000 4200 l
  cp gs col0 s gr 
 /Times-Roman ff 180.00 scf sf
-1650 1125 m
+3075 1125 m
 gs 1 -1 sc (Reply Block) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-1650 900 m
+3075 900 m
 gs 1 -1 sc (Single Use) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-1650 1725 m
+3075 1725 m
 gs 1 -1 sc (Random Data) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-1650 2325 m
+3075 2325 m
 gs 1 -1 sc (Payload) col0 sh gr
 % Polyline
-n 3000 600 m 4125 600 l 4125 1275 l 3000 1275 l
+n 4425 600 m 5550 600 l 5550 1275 l 4425 1275 l
  cp gs col0 s gr 
 % Polyline
-n 3000 1350 m 4125 1350 l 4125 2025 l 3000 2025 l
+n 4425 1350 m 5550 1350 l 5550 2025 l 4425 2025 l
  cp gs col0 s gr 
 % Polyline
-n 3000 2100 m 4125 2100 l 4125 4200 l 3000 4200 l
+n 4425 2100 m 5550 2100 l 5550 4200 l 4425 4200 l
  cp gs col0 s gr 
 /Times-Roman ff 180.00 scf sf
-3075 1575 m
+4500 1575 m
 gs 1 -1 sc (Single Use) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-3075 1800 m
+4500 1800 m
 gs 1 -1 sc (Reply Block) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-3075 975 m
+4500 975 m
 gs 1 -1 sc (Sender Onion) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-3075 2325 m
+4500 2325 m
 gs 1 -1 sc (Payload) col0 sh gr
-% Polyline
-n 7875 600 m 9000 600 l 9000 1575 l 7875 1575 l
- cp gs col0 s gr 
 /Times-Roman ff 180.00 scf sf
-7950 825 m
-gs 1 -1 sc (Version) col0 sh gr
+1800 375 m
+gs 1 -1 sc (Forward) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-7950 1065 m
-gs 1 -1 sc (Shared Secret) col0 sh gr
+3075 375 m
+gs 1 -1 sc (Direct Reply) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-7950 1305 m
-gs 1 -1 sc (Digest) col0 sh gr
+4575 225 m
+gs 1 -1 sc (Anonymized) col0 sh gr
 /Times-Roman ff 180.00 scf sf
-7950 1545 m
-gs 1 -1 sc (Next Address) col0 sh gr
+4800 450 m
+gs 1 -1 sc (Reply) col0 sh gr
 % Polyline
  [60] 0 sd
 n 5700 600 m
@@ -238,18 +226,6 @@
 n 6225 1800 m
  6825 1800 l gs col0 s gr  [] 0 sd
 /Times-Roman ff 180.00 scf sf
-375 375 m
-gs 1 -1 sc (Forward) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-1650 375 m
-gs 1 -1 sc (Direct Reply) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-3150 225 m
-gs 1 -1 sc (Anonymized) col0 sh gr
-/Times-Roman ff 180.00 scf sf
-3375 450 m
-gs 1 -1 sc (Reply) col0 sh gr
-/Times-Roman ff 180.00 scf sf
 6300 2100 m
 gs 1 -1 sc (Up to 16 ) col0 sh gr
 /Times-Roman ff 180.00 scf sf
@@ -270,5 +246,29 @@
 /Times-Roman ff 180.00 scf sf
 8025 375 m
 gs 1 -1 sc (Sub Header) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+75 1500 m
+gs 1 -1 sc (Second Leg Header) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+300 750 m
+gs 1 -1 sc (First Leg Header) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+450 975 m
+gs 1 -1 sc (16 sub headers) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+900 1200 m
+gs 1 -1 sc (2kb size) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+375 1725 m
+gs 1 -1 sc (16 sub headers) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+825 2325 m
+gs 1 -1 sc (Payload ) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+750 2550 m
+gs 1 -1 sc (28kb size) col0 sh gr
+/Times-Roman ff 180.00 scf sf
+825 1950 m
+gs 1 -1 sc (2kb size) col0 sh gr
 $F2psEnd
 rs

Index: headerDiagram.fig
===================================================================
RCS file: /home/minion/cvsroot/doc/headerDiagram.fig,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -d -r1.1 -r1.2
--- headerDiagram.fig	28 Oct 2002 19:07:10 -0000	1.1
+++ headerDiagram.fig	4 Nov 2002 17:29:52 -0000	1.2
@@ -7,41 +7,25 @@
 Single
 -2
 1200 2
-6 150 600 5700 4200
-6 4275 600 5700 2550
-4 0 0 50 0 0 12 0.0000 4 180 1200 4275 750 First Leg Header\001
-4 0 0 50 0 0 12 0.0000 4 135 1065 4275 990 16 sub headers\001
-4 0 0 50 0 0 12 0.0000 4 135 585 4275 1230 2kb size\001
-4 0 0 50 0 0 12 0.0000 4 180 1395 4275 1500 Second Leg Header\001
-4 0 0 50 0 0 12 0.0000 4 135 1065 4275 1740 16 sub headers\001
-4 0 0 50 0 0 12 0.0000 4 135 585 4275 1980 2kb size\001
-4 0 0 50 0 0 12 0.0000 4 180 615 4275 2250 Payload \001
-4 0 0 50 0 0 12 0.0000 4 135 675 4275 2490 28kb size\001
--6
-6 150 600 1275 4200
-6 150 600 1275 4200
-2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
-	 150 1350 1275 1350 1275 2025 150 2025 150 1350
-2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
-	 150 2100 1275 2100 1275 4200 150 4200 150 2100
+6 7875 600 9000 1575
 2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
-	 150 600 1275 600 1275 1275 150 1275 150 600
-4 0 0 50 0 0 12 0.0000 4 135 990 225 1725 Sender Onion\001
-4 0 0 50 0 0 12 0.0000 4 135 990 225 975 Sender Onion\001
--6
-4 0 0 50 0 0 12 0.0000 4 180 570 225 2325 Payload\001
+	 7875 600 9000 600 9000 1575 7875 1575 7875 600
+4 0 0 50 0 0 12 0.0000 2 135 570 7950 825 Version\001
+4 0 0 50 0 0 12 0.0000 2 135 975 7950 1065 Shared Secret\001
+4 0 0 50 0 0 12 0.0000 2 180 465 7950 1305 Digest\001
+4 0 0 50 0 0 12 0.0000 2 135 990 7950 1545 Next Address\001
 -6
+6 1575 75 5550 4200
 6 1575 600 2700 4200
 6 1575 600 2700 4200
 2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
-	 1575 600 2700 600 2700 1275 1575 1275 1575 600
-2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
 	 1575 1350 2700 1350 2700 2025 1575 2025 1575 1350
 2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
 	 1575 2100 2700 2100 2700 4200 1575 4200 1575 2100
-4 0 0 50 0 0 12 0.0000 4 180 885 1650 1125 Reply Block\001
-4 0 0 50 0 0 12 0.0000 4 180 780 1650 900 Single Use\001
-4 0 0 50 0 0 12 0.0000 4 135 975 1650 1725 Random Data\001
+2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
+	 1575 600 2700 600 2700 1275 1575 1275 1575 600
+4 0 0 50 0 0 12 0.0000 4 135 990 1650 1725 Sender Onion\001
+4 0 0 50 0 0 12 0.0000 4 135 990 1650 975 Sender Onion\001
 -6
 4 0 0 50 0 0 12 0.0000 4 180 570 1650 2325 Payload\001
 -6
@@ -53,20 +37,30 @@
 	 3000 1350 4125 1350 4125 2025 3000 2025 3000 1350
 2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
 	 3000 2100 4125 2100 4125 4200 3000 4200 3000 2100
-4 0 0 50 0 0 12 0.0000 4 180 780 3075 1575 Single Use\001
-4 0 0 50 0 0 12 0.0000 4 180 885 3075 1800 Reply Block\001
-4 0 0 50 0 0 12 0.0000 4 135 990 3075 975 Sender Onion\001
+4 0 0 50 0 0 12 0.0000 4 180 885 3075 1125 Reply Block\001
+4 0 0 50 0 0 12 0.0000 4 180 780 3075 900 Single Use\001
+4 0 0 50 0 0 12 0.0000 4 135 975 3075 1725 Random Data\001
 -6
 4 0 0 50 0 0 12 0.0000 4 180 570 3075 2325 Payload\001
 -6
--6
-6 7875 600 9000 1575
+6 4425 600 5550 4200
+6 4425 600 5550 4200
 2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
-	 7875 600 9000 600 9000 1575 7875 1575 7875 600
-4 0 0 50 0 0 12 0.0000 2 135 570 7950 825 Version\001
-4 0 0 50 0 0 12 0.0000 2 135 975 7950 1065 Shared Secret\001
-4 0 0 50 0 0 12 0.0000 2 180 465 7950 1305 Digest\001
-4 0 0 50 0 0 12 0.0000 2 135 990 7950 1545 Next Address\001
+	 4425 600 5550 600 5550 1275 4425 1275 4425 600
+2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
+	 4425 1350 5550 1350 5550 2025 4425 2025 4425 1350
+2 2 0 1 0 7 50 0 -1 0.000 0 0 -1 0 0 5
+	 4425 2100 5550 2100 5550 4200 4425 4200 4425 2100
+4 0 0 50 0 0 12 0.0000 4 180 780 4500 1575 Single Use\001
+4 0 0 50 0 0 12 0.0000 4 180 885 4500 1800 Reply Block\001
+4 0 0 50 0 0 12 0.0000 4 135 990 4500 975 Sender Onion\001
+-6
+4 0 0 50 0 0 12 0.0000 4 180 570 4500 2325 Payload\001
+-6
+4 0 0 50 0 0 12 0.0000 2 135 615 1800 375 Forward\001
+4 0 0 50 0 0 12 0.0000 2 180 900 3075 375 Direct Reply\001
+4 0 0 50 0 0 12 0.0000 2 180 915 4575 225 Anonymized\001
+4 0 0 50 0 0 12 0.0000 2 180 420 4800 450 Reply\001
 -6
 2 1 1 1 0 7 50 0 -1 4.000 0 0 -1 0 0 2
 	 5700 600 6150 600
@@ -92,10 +86,6 @@
 	 6225 1650 6825 1650
 2 1 2 1 0 7 50 0 -1 3.000 0 0 7 0 0 2
 	 6225 1800 6825 1800
-4 0 0 50 0 0 12 0.0000 2 135 615 375 375 Forward\001
-4 0 0 50 0 0 12 0.0000 2 180 900 1650 375 Direct Reply\001
-4 0 0 50 0 0 12 0.0000 2 180 915 3150 225 Anonymized\001
-4 0 0 50 0 0 12 0.0000 2 180 420 3375 450 Reply\001
 4 0 0 50 0 0 12 0.0000 2 180 675 6300 2100 Up to 16 \001
 4 0 0 50 0 0 12 0.0000 2 180 690 6300 2580 padded to\001
 4 0 0 50 0 0 12 0.0000 2 135 270 6300 2820 2kb\001
@@ -103,3 +93,11 @@
 4 0 0 50 0 0 12 0.0000 2 135 795 6300 2340 subheaders\001
 4 0 0 50 0 0 12 0.0000 2 135 510 6525 375 Header\001
 4 0 0 50 0 0 12 0.0000 2 135 840 8025 375 Sub Header\001
+4 0 0 50 0 0 12 0.0000 4 180 1395 75 1500 Second Leg Header\001
+4 0 0 50 0 0 12 0.0000 4 180 1200 300 750 First Leg Header\001
+4 0 0 50 0 0 12 0.0000 4 135 1065 450 975 16 sub headers\001
+4 0 0 50 0 0 12 0.0000 4 135 585 900 1200 2kb size\001
+4 0 0 50 0 0 12 0.0000 4 135 1065 375 1725 16 sub headers\001
+4 0 0 50 0 0 12 0.0000 4 180 615 825 2325 Payload \001
+4 0 0 50 0 0 12 0.0000 4 135 675 750 2550 28kb size\001
+4 0 0 50 0 0 12 0.0000 4 135 585 825 1950 2kb size\001

Index: minion-design.tex
===================================================================
RCS file: /home/minion/cvsroot/doc/minion-design.tex,v
retrieving revision 1.66
retrieving revision 1.67
diff -u -d -r1.66 -r1.67
--- minion-design.tex	3 Nov 2002 11:07:34 -0000	1.66
+++ minion-design.tex	4 Nov 2002 17:29:52 -0000	1.67
@@ -4,6 +4,7 @@
 
 \usepackage{url}
 \usepackage{graphics}
+\usepackage{amsmath}
 
 \newcommand{\workingnote}[1]{}        % The version that hides the note.
 %\newcommand{\workingnote}[1]{(**#1)}   % The version that makes the note visible.
@@ -255,17 +256,27 @@
 own, and who can compromise some fraction of the mixes on the network.
 We assume that such an adversary is attempting to compromise users'
 anonymity by learning (or guessing with a reasonable probability) who
-is communicating with whom.
+is communicating with whom. In particular the adversary wants to use
+all information contained in the network traffic patterns to trace
+communication back or forth and gain additional knowledge about
+communicating partners.
 %What else is the adversary trying to do?
 
-We want to resist
-
-replies: we want to avoid partitioning by having reply messages be
-   indistinguishable from forward messages, and just as secure.  To the
-   extent possible, a mix should not be able to learn any more from a
-   message's contents than from the fact of the message's receipt.
-
+The mixminion network tries to make is as hard as possible for an
+adversary observing the network to gain any additional information
+about communicating partners beyond an \emph{a-priory} belief. It does
+this by providing very little information to outside observers, and
+intermediate nodes, to avoid intersection attacks. In particular even
+intermediary nodes are not aware of the actual route length, that can
+be as long as 32 hops, or their position in the network. Furthermore
+the processing for replies is exactly the same as for normal messages
+and it is therefore difficult to partition the anonymity sets by
+distinguishing between them. 
 
+% replies: we want to avoid partitioning by having reply messages be
+%   indistinguishable from forward messages, and just as secure.  To the
+%   extent possible, a mix should not be able to learn any more from a
+%   message's contents than from the fact of the message's receipt.
 \subsection{Known attacks against mix-nets}
 
 The largest class of passive attacks against 
@@ -1178,10 +1189,14 @@
 In the first approach, nymservers keep a stock of reply blocks for
 each mailbox, and use a reply block for each incoming message. 
 
-\[(A) \rightarrow \mathrm{Nym}: \{\mathrm{Register} ,A', V_{A'}, (A)_1 \dots
-(A)_n\}_{S_{A'}}\]
-\[B \rightarrow \mathrm{Nym}: A', M\]
-\[\mathrm{Nym} \rightarrow (A)_i: M\]
+\begin{equation}
+\begin{aligned}
+(A) \rightarrow \mathrm{Nym}&: \{\mathrm{Register} ,A', V_{A'}, (A)_1 \dots
+(A)_n\}_{S_{A'}} \\ 
+B \rightarrow \mathrm{Nym}&: A', M \\ 
+\mathrm{Nym} \rightarrow (A)_i&: M \\
+\end{aligned}
+\end{equation}
 
 As long
 as the owner of the pseudonym keeps the nymserver well-stocked, no
@@ -1196,11 +1211,15 @@
 checks the status of his mail and sends a sufficient batch of reply
 blocks so the nymserver can deliver that mail.
 
-\[(A) \rightarrow \mathrm{Nym}: \{\mathrm{Register} ,A', V_{A'}\}_{S_{A'}}\]
-\[B \rightarrow \mathrm{Nym}: A', M\]
-\[(A) \rightarrow \mathrm{Nym}: \{\mathrm{Query} ,A', (A)_1 \dots
-(A)_n\}_{S_{A'}}\]
-\[\mathrm{Nym} \rightarrow (A)_i: M\]
+\begin{equation}
+\begin{aligned}
+(A) \rightarrow \mathrm{Nym}&: \{\mathrm{Register} ,A', V_{A'}\}_{S_{A'}}\\
+B \rightarrow \mathrm{Nym}&: A', M \\
+(A) \rightarrow \mathrm{Nym}&: \{\mathrm{Query} ,A', (A)_1 \dots
+(A)_n\}_{S_{A'}} \\
+\mathrm{Nym} \rightarrow (A)_i&: M
+\end{aligned}
+\end{equation}
 
 In this case, the nymserver doesn't need to store any reply blocks.
 The above flooding attack still works, but now it is exactly