Yodel: Strong metadata security for voice calls

David Lazar; Yossi Gilad; Nickolai Zeldovich

doi:10.1145/3341301.3359648

Yodel: Strong metadata security for voice calls

David Lazar, Yossi Gilad, Nickolai Zeldovich

The Rachel and Selim Benin School of Engineering and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

15 Scopus citations

Abstract

Yodel is the first system for voice calls that hides metadata (e.g., who is communicating with whom) from a powerful adversary that controls the network and compromises servers. Voice calls require sub-second message latency, but low latency has been difficult to achieve in prior work where processing each message requires an expensive public key operation at each hop in the network. Yodel avoids this expense with the idea of self-healing circuits, reusable paths through a mix network that use only fast symmetric cryptography. Once created, these circuits are resilient to passive and active attacks from global adversaries. Creating and connecting to these circuits without leaking metadata is another challenge that Yodel addresses with the idea of guarded circuit exchange, where each user creates a backup circuit in case an attacker tampers with their traffic. We evaluate Yodel across the internet and it achieves acceptable voice quality with 990 ms of latency for 5 million simulated users.

Original language	American English
Title of host publication	SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles
Publisher	Association for Computing Machinery, Inc
Pages	211-224
Number of pages	14
ISBN (Electronic)	9781450368735
DOIs	https://doi.org/10.1145/3341301.3359648
State	Published - 27 Oct 2019
Event	27th ACM Symposium on Operating Systems Principles, SOSP 2019 - Huntsville, Canada Duration: 27 Oct 2019 → 30 Oct 2019

Publication series

Name	SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles

Conference

Conference	27th ACM Symposium on Operating Systems Principles, SOSP 2019
Country/Territory	Canada
City	Huntsville
Period	27/10/19 → 30/10/19

Bibliographical note

Funding Information:
Thanks to Robert Morris, Phil Levis, Tej Chajed, the anonymous reviewers, and our shepherd, Brad Karp, for providing feedback that improved this paper. This work was supported by NSF awards CNS-1413920 and CNS-1414119. David Lazar is supported by an SOSP 2019 student scholarship from the National Science Foundation.

Publisher Copyright:
© 2019 David Lazar, Yossi Gilad, Nickolai Zeldovich.

Access to Document

10.1145/3341301.3359648

Cite this

@inproceedings{a825dd8be3f040b2a80fc51e8326439f,

title = "Yodel: Strong metadata security for voice calls",

abstract = "Yodel is the first system for voice calls that hides metadata (e.g., who is communicating with whom) from a powerful adversary that controls the network and compromises servers. Voice calls require sub-second message latency, but low latency has been difficult to achieve in prior work where processing each message requires an expensive public key operation at each hop in the network. Yodel avoids this expense with the idea of self-healing circuits, reusable paths through a mix network that use only fast symmetric cryptography. Once created, these circuits are resilient to passive and active attacks from global adversaries. Creating and connecting to these circuits without leaking metadata is another challenge that Yodel addresses with the idea of guarded circuit exchange, where each user creates a backup circuit in case an attacker tampers with their traffic. We evaluate Yodel across the internet and it achieves acceptable voice quality with 990 ms of latency for 5 million simulated users.",

author = "David Lazar and Yossi Gilad and Nickolai Zeldovich",

note = "Funding Information: Thanks to Robert Morris, Phil Levis, Tej Chajed, the anonymous reviewers, and our shepherd, Brad Karp, for providing feedback that improved this paper. This work was supported by NSF awards CNS-1413920 and CNS-1414119. David Lazar is supported by an SOSP 2019 student scholarship from the National Science Foundation. Publisher Copyright: {\textcopyright} 2019 David Lazar, Yossi Gilad, Nickolai Zeldovich.; 27th ACM Symposium on Operating Systems Principles, SOSP 2019 ; Conference date: 27-10-2019 Through 30-10-2019",

year = "2019",

month = oct,

day = "27",

doi = "10.1145/3341301.3359648",

language = "American English",

series = "SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles",

publisher = "Association for Computing Machinery, Inc",

pages = "211--224",

booktitle = "SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles",

}

Lazar, D, Gilad, Y & Zeldovich, N 2019, Yodel: Strong metadata security for voice calls. in SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles. SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles, Association for Computing Machinery, Inc, pp. 211-224, 27th ACM Symposium on Operating Systems Principles, SOSP 2019, Huntsville, Canada, 27/10/19. https://doi.org/10.1145/3341301.3359648

Yodel: Strong metadata security for voice calls. / Lazar, David; Gilad, Yossi; Zeldovich, Nickolai.
SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles. Association for Computing Machinery, Inc, 2019. p. 211-224 (SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Yodel

T2 - 27th ACM Symposium on Operating Systems Principles, SOSP 2019

AU - Lazar, David

AU - Gilad, Yossi

AU - Zeldovich, Nickolai

N1 - Funding Information: Thanks to Robert Morris, Phil Levis, Tej Chajed, the anonymous reviewers, and our shepherd, Brad Karp, for providing feedback that improved this paper. This work was supported by NSF awards CNS-1413920 and CNS-1414119. David Lazar is supported by an SOSP 2019 student scholarship from the National Science Foundation. Publisher Copyright: © 2019 David Lazar, Yossi Gilad, Nickolai Zeldovich.

PY - 2019/10/27

Y1 - 2019/10/27

N2 - Yodel is the first system for voice calls that hides metadata (e.g., who is communicating with whom) from a powerful adversary that controls the network and compromises servers. Voice calls require sub-second message latency, but low latency has been difficult to achieve in prior work where processing each message requires an expensive public key operation at each hop in the network. Yodel avoids this expense with the idea of self-healing circuits, reusable paths through a mix network that use only fast symmetric cryptography. Once created, these circuits are resilient to passive and active attacks from global adversaries. Creating and connecting to these circuits without leaking metadata is another challenge that Yodel addresses with the idea of guarded circuit exchange, where each user creates a backup circuit in case an attacker tampers with their traffic. We evaluate Yodel across the internet and it achieves acceptable voice quality with 990 ms of latency for 5 million simulated users.

AB - Yodel is the first system for voice calls that hides metadata (e.g., who is communicating with whom) from a powerful adversary that controls the network and compromises servers. Voice calls require sub-second message latency, but low latency has been difficult to achieve in prior work where processing each message requires an expensive public key operation at each hop in the network. Yodel avoids this expense with the idea of self-healing circuits, reusable paths through a mix network that use only fast symmetric cryptography. Once created, these circuits are resilient to passive and active attacks from global adversaries. Creating and connecting to these circuits without leaking metadata is another challenge that Yodel addresses with the idea of guarded circuit exchange, where each user creates a backup circuit in case an attacker tampers with their traffic. We evaluate Yodel across the internet and it achieves acceptable voice quality with 990 ms of latency for 5 million simulated users.

UR - http://www.scopus.com/inward/record.url?scp=85076776019&partnerID=8YFLogxK

U2 - 10.1145/3341301.3359648

DO - 10.1145/3341301.3359648

M3 - Conference contribution

AN - SCOPUS:85076776019

T3 - SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles

SP - 211

EP - 224

BT - SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles

PB - Association for Computing Machinery, Inc

Y2 - 27 October 2019 through 30 October 2019

ER -

Yodel: Strong metadata security for voice calls

Abstract

Publication series

Conference

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this