usenix conference policies
Managing NymBoxes for Identity and Tracking Protection
David Wolinsky, Daniel Jackowitz, and Bryan Ford, Yale University
Despite the attempts of well-designed anonymous communication tools to protect users from tracking or identification, flaws in surrounding software (such as web browsers) and mistakes in configuration may leak the user’s identity. We introduce Nymix, an anonymity-centric operating system architecture designed “top-to bottom” to strengthen identity- and tracking-protection. Nymix’s core contribution is OS support for nymbrowsing: independent, parallel, and ephemeral web sessions. Each web session, or pseudonym, runs in a unique virtual machine (VM) instance evolving from a common base state with support for long-lived sessions which can be anonymously stored to the cloud, avoiding de-anonymization despite potential confiscation or theft. Nymix allows a user to safely browse the Web using various different transports simultaneously through a pluggable communication model that supports Tor, Dissent, and a private browsing mode. In evaluations, Nymix consumes 600 MB per nymbox and loads within 15 to 25 seconds.
Open Access Media
USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.
author = {David Isaac Wolinsky and Daniel Jackowitz and Bryan Ford},
title = {Managing {NymBoxes} for Identity and Tracking Protection},
booktitle = {2014 Conference on Timely Results in Operating Systems (TRIOS 14)},
year = {2014},
address = {Broomfield, CO},
url = {https://www.usenix.org/conference/trios14/technical-sessions/presentation/wolinsky},
publisher = {USENIX Association},
month = oct
}
connect with us