Resources
Identity Use Cases & Scenarios.- FIDIS Deliverables.
- Identity of Identity.
- Interoperability.
- Profiling.
- Forensic Implications.
- HighTechID.
- D3.1: Overview on IMS.
- D3.2: A study on PKI and biometrics.
- D3.3: Study on Mobile Identity Management.
- D3.5: Workshop on ID-Documents.
- D3.6: Study on ID Documents.
- D3.7: A Structured Collection on RFID Literature.
- D3.8: Study on protocols with respect to identity and identification – an insight on network protocols and privacy-aware communication.
- D3.9: Study on the Impact of Trusted Computing on Identity and Identity Management.
- D3.10: Biometrics in identity management.
- D3.11: Report on the Maintenance of the IMS Database.
- D3.15: Report on the Maintenance of the ISM Database.
- D3.17: Identity Management Systems – recent developments.
- D12.1: Integrated Workshop on Emerging AmI Technologies.
- D12.2: Study on Emerging AmI Technologies.
- D12.3: A Holistic Privacy Framework for RFID Applications.
- D12.4: Integrated Workshop on Emerging AmI.
- D12.5: Use cases and scenarios of emerging technologies.
- D12.6: A Study on ICT Implants.
- D12.7: Identity-related Crime in Europe – Big Problem or Big Hype?.
- D12.10: Normality Mining: Results from a Tracking Study.
- Privacy and legal-social content.
- Mobility and Identity.
- Other.
- IDIS Journal.
- FIDIS Interactive.
- Press & Events.
- In-House Journal.
- Booklets
- Identity in a Networked World.
- Identity R/Evolution.
D3.3: Study on Mobile Identity Management
 |
Study on Mobile Identity Management FOR ANONYMISING WAP SURFING |
 |
mCrowds (Andersson et al. 2003; Andersson et al. 2004) is a low-latency anonymity technology developed at Karlstad University. The purpose of mCrowds is to minimise the dissemination of personal information on the mobile Internet. It does so by enabling anonymous Wireless Application Protocol (WAP) browsing and by minimising the disclosure of personal information when using location-based services (LBS). In cases where the location is measured by the mobile device itself, location based services can be used anonymously if this mode is supported by the LBS provider.
Introduction to Architecture
mCrowds is based on Crowds (Reiter and Rubin, 1997), a system for anonymous web browsing on the traditional Internet. Crowds works by grouping users into a large anonymity set, a so called crowd, which issues requests to web servers on behalf of its members. Crowds is a peer-to-peer technology where each user runs his / her “Mix” in the network (called a jondo) and the communication is routed along virtual paths consisting of many such jondos. A dedicated node called the blender is taking care of membership management. In mCrowds the concept of a traditional Crowds system applied in a mobile Internet setting is combined with a personal privacy proxy that acts as a filter tailored to anonymise mobile requests. The figure below illustrates the mCrowds system. Note that the crowd itself resides on the wired Internet domain.
Figure 5-3: mCrowds overview
Performance Issues
Performance was one of the primary design goals in the development of mCrowds. The traditional Crowds system was chosen to provide a base for mCrowds, since Crowds as a base is supposed to offer better performance properties than the more common anonymity technologies based on Mix-nets (Chaum, 1981), such as JAP Web Mixes (JAP, 2003) or Onion Routing (Andersson, 1996). This is because Crowds as a base provides better scalability properties and further the use of public-key cryptography is minimised. Further performance enhancements have been implemented in the communication protocol of mCrowds.
The performance of mCrowds has been measured in a performance evaluation that measured the performance overhead introduced by mCrowds when browsing anonymously on the mobile Internet (Andersson et al., 2004). To make the conditions realistic, an experimental crowd was simulated where the nodes in the crowds were separated by a relatively large geographical distance. The results of the performance evaluation were encouraging, as the performance overhead was relatively small compared to the total latency. In figure 5-4 below, the total response latency while fetching data from a WAP server is measured. The results are plotted for firstly the case where mCrowds is enabled and the path length is four and secondly for the case where mCrowds is disabled.
Figure 5-4: Performance evaluation
Conclusions
Mobile Internet introduces new privacy risks and privacy legislation alone is not sufficient to secure informational privacy for users. Thus there is a need to develop privacy-enhancing technologies in addition to privacy legislation. One contribution is mCrowds, which is a privacy-enhancing technology that enables anonymous WAP browsing on the mobile Internet.
A number of experiments have been made to evaluate the performance of mCrowds in practice, in which the performance overhead generated by mCrowds was measured. The subsequent results of this performance evaluation were encouraging as the overhead in performance introduced by mCrowds was relatively small compared to the total response latency when fetching WAP pages via the mobile Internet. The results of this performance analysis can serve as a comparison to other approaches for anonymity on the mobile Internet. The area of anonymity and identity management on the mobile Internet is growing fast and such technologies will become more common in the coming years. The contribution in the form of mCrowds can be seen as one of the initial steps.
| |
   |
|
| 24 / 36 |
