Dovetail: Stronger Anonymity In Next-generation Internet Routing
Abstract
Current low-latency anonymity systems use complex overlay networks to conceal a user's IP address, introducing significant latency and network efficiency penalties compared to normal Internet usage. Rather than this obfuscation of network identity through higher level protocols, we recommend a more direct solution: a routing protocol that allows communication without exposing network identity, providing a strong foundation for Internet privacy, while allowing identity to be defined in those higher level protocols where it adds value. We propose <italic>Dovetail</italic>, a next-generation Internet routing protocol that provides anonymity against an active attacker located at any single point within the network. Key design features include the choice of many different paths through the network and the joining of path segments without requiring a trusted third party. We demonstrate the privacy and efficiency of our proposal by simulation, using a model of the complete Internet at the AS-level.