Java Anon Proxy

From Wikipedia, the free encyclopedia

Jump to: navigation, search
Java Anon Proxy

Screenshot of JAP
Stable release 00.10.003
Preview release 00.10.045
Written in Java
Operating system Cross-platform
Type proxy server
Website www.jondos.de/en/, http://anon.inf.tu-dresden.de/index_en.html]

Java Anon Proxy, also known as Java Anonymous Proxy, JAP Anon Proxy, JAP or JonDonym, is a proxy system designed to allow browsing the Web with revocable pseudonymity.[1] It is based in Germany and was originally developed as part of an ongoing project of the Technische Universität Dresden, the Universität Regensburg and Privacy Commissioner of Schleswig-Holstein. Written in the Java programming language.

Cross-platform, free, it sends requests through a cascade and mixes the data streams of multiple users in order to further obfuscate the data to outsiders.

JonDonym is available for all platforms that support Java.

Contents

[edit] Design

The JonDonym client program allows the user to choose among several Mix Cascades (i.e. a group of anonymization proxies) offered by independent organisations. Users may choose by themselves whom of these operators they will trust, and whom they won't. This is different from peer-to-peer based anonymity networks like Tor (anonymity network) and I2P, whose anonymisation proxies are anonymous themselves, which means the users have to rely on unknown proxy operators (every user of the service being by default a proxy operator). However, it means that all the relays used for JonDonym-mediated connexion are known and identified, and therefore potentially targeted very easily by hackers, governmental agencies or lobbying groups.This has for example led to the issues mentioned below, where court orders essentially gave all control over the whole system to the German government. As discussed below, solutions like international distribution of the relays and the additional use of Tor can somewhat mitigate this loss of independance.

The speed and availability of the service depends on the operators of the Mixes in the cascades, and therefore varies. More users on a cascade improve anonymity, but a large number of users might diminish the speed and bandwidth available for a single user.

[edit] Cost, name change and commercial service

Use of JonDonym has been (and is still) free but since financial backing of the original research project has run out, on June 22 2007, a startup from the original project team members was founded as Jondos GmbH. Jondos GmbH has overtaken development and goes ahead to work on an improved blocking resistance function that makes it easier for users from restrictive countries to get a connection to the system. To cover costs of running mix cascades and increase speed as well as anonymity, Jondos and further Internet firms launched the pay-version of JonDonym.

As a consequence the JAP client has been renamed to JonDo and the service itself from AN.ON to JonDonym.[2] The JonDonym network around Jondos GmbH now provides powerful mix cascades leading to much higher speed compared to the free JonDonym mix servers. JonDonym mix cascades mostly are driven by international widely distributed internet SMEs and mix cascades always include three mix servers for advanced security. As contractors of Jondos GmbH mix operators must ensure sufficient capacity regarding uplink and processors. This enables web browsing at standard DSL speed while the same time anonymity gets increased. Cost free Cascades are still in operation although they don't offer very low latency, multiple Mixes per Cascade or guaranteed bandwidth as the commercial ones.

[edit] Privacy

The online activities of the user can be revealed if all Mixes of a cascade work together by keeping log files and correlating their logs.[3] However, all Mix operators have to sign a voluntary commitment not to keep such logs, and for any observer it is difficult to infiltrate all operators in a long cascade.

In 2003, the German BKA[4][5] obtained a warrant to force the Dresden Mix operators to log access to a specific web address and to introduce a crime detection function in the server software making this possible. Coincidentally (at the same time, but for other reasons), a mandatory update for the JonDonym client software was released. This led to reports in Internet media about a backdoor[6] directly built into the client, although JonDonym itself never had any kind of backdoor. The additional feature that was added to the Mix server code enables operators to revoke anonymity if they all work together and recompile their software. This is completely covered by the AN.ON threat model and not a security leak by itself. Currently, further research is being done by AN.ON to make this functionality more privacy-friendly.[1]

As a reaction to the threat from local authorities, the system has spread internationally. If the Mixes of a cascade are spread over several countries, the law enforcement agencies of all these countries would have to work together to reveal someone's identity.

Since May 2005, JonDonym can also be used as a client for the Tor and since 2006 also for the Mixminion network.[7] These features are still in an early stage and only available in the beta version of the software.

[edit] See also

[edit] References

  1. ^ a b Privacy-friendly law enforcement 2006
  2. ^ JonDonym press release 2007
  3. ^ [1] Frequently Asked Questions | JonDos GmbH
  4. ^ netsys huh
  5. ^ AN.ON still guarantees anonymity 19. August 2003
  6. ^ Net anonymity service back-doored 2003-08-21
  7. ^ [2] Hilfe services.html | JonDos GmbH

[edit] External links

Retrieved from "http://en.wikipedia.org/wiki/Java_Anon_Proxy"
Personal tools
Languages