{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,26]],"date-time":"2026-01-26T01:42:08Z","timestamp":1769391728787,"version":"3.49.0"},"publisher-location":"Berlin, Heidelberg","reference-count":38,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783662583869","type":"print"},{"value":"9783662583876","type":"electronic"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-662-58387-6_1","type":"book-chapter","created":{"date-parts":[[2019,8,29]],"date-time":"2019-08-29T11:03:39Z","timestamp":1567076619000},"page":"3-19","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["\u201cMajor Key Alert!\u201d Anomalous Keys in Tor Relays"],"prefix":"10.1007","author":[{"given":"George","family":"Kadianakis","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Claudia V.","family":"Roberts","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Laura M.","family":"Roberts","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Philipp","family":"Winter","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,12,7]]},"reference":[{"key":"1_CR1","unstructured":"Adrian, D., et al.: Imperfect forward secrecy: how Diffie-Hellman fails in practice. In: CCS. ACM (2015). \n https:\/\/weakdh.org\/imperfect-forward-secrecy-ccs15.pdf\n \n . Accessed 22 Sept 2017"},{"key":"1_CR2","unstructured":"Bernstein, D.J.: How to find smooth parts of integers (2004). \n https:\/\/cr.yp.to\/factorization\/smoothparts-20040510.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR3","doi-asserted-by":"publisher","first-page":"341","DOI":"10.1007\/978-3-642-42045-0_18","volume-title":"Advances in Cryptology - ASIACRYPT 2013","author":"Daniel J. Bernstein","year":"2013","unstructured":"Bernstein, D.J., et al.: Factoring RSA keys from certified smart cards: coppersmith in the wild. In: Sako, K., Sarkar, P. (eds.) ASIACRYPT 2013. LNCS, vol. 8270, pp. 341\u2013360. Springer, Heidelberg (2013). \n https:\/\/doi.org\/10.1007\/978-3-642-42045-0_18\n \n , \n https:\/\/smartfacts.cr.yp.to\/smartfacts-20130916.pdf"},{"key":"1_CR4","unstructured":"Biryukov, A., Pustogarov, I., Weinmann, R.P.: Trawling for Tor hidden services: detection, measurement, deanonymization. In: Security and Privacy. IEEE (2013). \n http:\/\/www.ieee-security.org\/TC\/SP2013\/papers\/4977a080.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR5","unstructured":"Boneh, D.: Twenty years of attacks on the RSA cryptosystem. Not. Am. Math. Soc. 46(2) (1999). \n http:\/\/crypto.stanford.edu\/~dabo\/pubs\/papers\/RSA-survey.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"178","DOI":"10.1007\/3-540-68339-9_16","volume-title":"Advances in Cryptology \u2014 EUROCRYPT 1996","author":"D Coppersmith","year":"1996","unstructured":"Coppersmith, D.: Finding a small root of a bivariate integer equation; factoring with high bits known. In: Maurer, U. (ed.) EUROCRYPT 1996. LNCS, vol. 1070, pp. 178\u2013189. Springer, Heidelberg (1996). \n https:\/\/doi.org\/10.1007\/3-540-68339-9_16"},{"issue":"4","key":"1_CR7","doi-asserted-by":"publisher","first-page":"233","DOI":"10.1007\/s001459900030","volume":"10","author":"Don Coppersmith","year":"1997","unstructured":"Coppersmith, D.: Small solutions to polynomial equations, and low exponent RSA vulnerabilities. J. Cryptol. 10(4), 233\u2013260 (1997). \n https:\/\/www.di.ens.fr\/~fouque\/ens-rennes\/coppersmith.pdf\n \n . Accessed 9 May 2017","journal-title":"Journal of Cryptology"},{"key":"1_CR8","unstructured":"Dingledine, R.: Tor security advisory: \u201crelay early\u201d traffic confirmation attack, July 2014. \n https:\/\/blog.torproject.org\/blog\/tor-security-advisory-relay-early-traffic-confirmation-attack\/\n \n . Accessed 9 May 2017"},{"key":"1_CR9","unstructured":"Dingledine, R., Mathewson, N.: Tor protocol specification. \n https:\/\/gitweb.torproject.org\/torspec.git\/tree\/tor-spec.txt\n \n . Accessed 9 May 2017"},{"key":"1_CR10","unstructured":"Dorey, K., Chang-Fong, N., Essex, A.: Indiscreet logs: Diffie-Hellman backdoors in TLS. In: NDSS. Internet Society (2017). \n https:\/\/wp.internetsociety.org\/ndss\/wp-content\/uploads\/sites\/25\/2017\/09\/ndss2017_04A-2_Dorey_paper.pdf\n \n . Accessed 19 Sept 2017"},{"key":"1_CR11","unstructured":"Freedom of the Press Foundation: SecureDrop. \n https:\/\/securedrop.org\n \n . Accessed 19 Sept 2017"},{"key":"1_CR12","unstructured":"Gajek, J.: ssl-dh-params. \n https:\/\/nmap.org\/nsedoc\/scripts\/ssl-dh-params.html\n \n . Accessed 22 Sept 2017"},{"issue":"2","key":"1_CR13","doi-asserted-by":"publisher","first-page":"245","DOI":"10.1007\/s10623-011-9604-z","volume":"67","author":"Ian Goldberg","year":"2012","unstructured":"Goldberg, I., Stebila, D., Ustaoglu, B.: Anonymity and one-way authentication in key exchange protocols. Des. Codes Cryptogr. 67(2), 245\u2013269 (2013). Accessed 9 May 2017","journal-title":"Designs, Codes and Cryptography"},{"key":"1_CR14","unstructured":"Hastings, M., Fried, J., Heninger, N.: Weak keys remain widespread in network devices. In: IMC. ACM (2016). \n https:\/\/www.cis.upenn.edu\/~nadiah\/papers\/weak-keys\/weak-keys.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR15","unstructured":"Heninger, N., Durumeric, Z., Wustrow, E., Halderman, J.A.: Mining your Ps and Qs: detection of widespread weak keys in network devices. In: USENIX Security. USENIX (2012). \n https:\/\/factorable.net\/weakkeys12.extended.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR16","unstructured":"Heninger, N., Halderman, J.A.: Fastgcd. \n https:\/\/factorable.net\/fastgcd-1.0.tar.gz\n \n . Accessed 9 May 2017"},{"key":"1_CR17","unstructured":"Jaggard, A.D., Syverson, P.: Oft target. In: HotPETs (2017). \n https:\/\/petsymposium.org\/2017\/papers\/hotpets\/oft-target-1707.pdf"},{"key":"1_CR18","unstructured":"Jansen, R., Hopper, N.: Shadow: running Tor in a box for accurate and efficient experimentation. In: NDSS. Internet Society (2012). \n http:\/\/www.robgjansen.com\/publications\/shadow-ndss2012.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR19","unstructured":"Johnson, D.: Stem docs. \n https:\/\/stem.torproject.org\n \n . Accessed 9 May 2017"},{"key":"1_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"626","DOI":"10.1007\/978-3-642-32009-5_37","volume-title":"Advances in Cryptology \u2013 CRYPTO 2012","author":"AK Lenstra","year":"2012","unstructured":"Lenstra, A.K., Hughes, J.P., Augier, M., Bos, J.W., Kleinjung, T., Wachter, C.: Public keys. In: Safavi-Naini, R., Canetti, R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 626\u2013642. Springer, Heidelberg (2012). \n https:\/\/doi.org\/10.1007\/978-3-642-32009-5_37"},{"key":"1_CR21","unstructured":"Litzenberger, D.: PyCrypto - the Python cryptography toolkit. \n https:\/\/www.dlitz.net\/software\/pycrypto\/\n \n . Accessed 9 May 2017"},{"key":"1_CR22","unstructured":"Mathewson, N.: Next-generation hidden services in Tor. \n https:\/\/gitweb.torproject.org\/torspec.git\/tree\/proposals\/224-rend-spec-ng.txt\n \n . Accessed 1 Aug 2017"},{"key":"1_CR23","unstructured":"Matic, S., Kotzias, P., Caballero, J.: CARONTE: detecting location leaks for deanonymizing Tor hidden services. In: CCS. ACM (2015). \n https:\/\/software.imdea.org\/~juanca\/papers\/caronte_ccs15.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR24","unstructured":"Muffett, A.: Facebook brute forcing hidden services, October 2014. \n https:\/\/lists.torproject.org\/pipermail\/tor-talk\/2014-October\/035413.html\n \n . Accessed 9 May 2017"},{"key":"1_CR25","unstructured":"Nurmi, J.: Ahmia - search Tor hidden services. \n https:\/\/ahmia.fi\/onions\/\n \n . Accessed 9 May 2017"},{"key":"1_CR26","unstructured":"O\u2019Cearbhaill, D.: Trawling Tor hidden service - mapping the DHT (2013). \n https:\/\/donncha.is\/2013\/05\/trawling-tor-hidden-services\/\n \n . Accessed 9 May 2017"},{"key":"1_CR27","unstructured":"Rivest, R.L., Shamir, A., Adleman, L.: A method for obtaining digital signatures and public-key cryptosystems. Commun. ACM 21(2), 120\u2013126 (1978). \n https:\/\/people.csail.mit.edu\/rivest\/Rsapaper.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR28","unstructured":"Roberts, L.M.: Anomalous keys in Tor relays. Technical report, April 2017. \n https:\/\/lists.torproject.org\/pipermail\/tor-dev\/2017-April\/012161.html\n \n . Accessed 2 Aug 2017"},{"key":"1_CR29","unstructured":"Swanson, E.: Scallion - GPU-based onion hash generator. \n https:\/\/github.com\/lachesis\/scallion\n \n . Accessed 9 May 2017"},{"key":"1_CR30","unstructured":"The Tor Project: CollecTor. \n https:\/\/collector.torproject.org\n \n . Accessed 9 May 2017"},{"key":"1_CR31","unstructured":"The Tor Project: Servers - Tor metrics. \n https:\/\/metrics.torproject.org\/networksize.html\n \n . Accessed 9 May 2017"},{"key":"1_CR32","unstructured":"The Tor Project: Tor directory protocol, version 3. \n https:\/\/gitweb.torproject.org\/torspec.git\/tree\/dir-spec.txt\n \n . Accessed 2 Aug 2017"},{"key":"1_CR33","unstructured":"The Tor Project: Tor research safety board. \n https:\/\/research.torproject.org\/safetyboard.html\n \n . Accessed 9 May 2017"},{"key":"1_CR34","unstructured":"The Tor Project: Tor shared random subsystem specification. \n https:\/\/gitweb.torproject.org\/torspec.git\/tree\/srv-spec.txt\n \n . Accessed 2 Aug 2017"},{"key":"1_CR35","unstructured":"Valenta, L., et al.: Measuring small subgroup attacks against Diffie-Hellman. In: NDSS. Internet Society (2017). \n https:\/\/wp.internetsociety.org\/ndss\/wp-content\/uploads\/sites\/25\/2017\/09\/ndss2017_04A-1_Valenta_paper_0.pdf\n \n . Accessed 19 Sept 2017"},{"key":"1_CR36","unstructured":"Valenta, L., Cohney, S., Liao, A., Fried, J., Bodduluri, S., Heninger, N.: Factoring as a service. In: Financial Cryptography. ACM (2016). \n https:\/\/eprint.iacr.org\/2015\/1000.pdf\n \n . Accessed 9 May 2017"},{"key":"1_CR37","unstructured":"Winter, P.: Are vanity onion domains a good idea?, October 2015. \n https:\/\/moderncrypto.org\/mail-archive\/messaging\/2015\/001928.html\n \n . Accessed 9 May 2017"},{"key":"1_CR38","unstructured":"Winter, P., Ensafi, R., Loesing, K., Feamster, N.: Identifying and characterizing Sybils in the Tor network. In: USENIX Security. USENIX (2016). \n https:\/\/nymity.ch\/sybilhunting\/pdf\/sybilhunting-sec16.pdf\n \n . Accessed 9 May 2017"}],"container-title":["Lecture Notes in Computer Science","Financial Cryptography and Data Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-662-58387-6_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,8,29]],"date-time":"2019-08-29T11:03:50Z","timestamp":1567076630000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-662-58387-6_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783662583869","9783662583876"],"references-count":38,"URL":"https:\/\/doi.org\/10.1007\/978-3-662-58387-6_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018]]},"assertion":[{"value":"7 December 2018","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"FC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Financial Cryptography and Data Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Nieuwpoort","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Cura\u00e7ao","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 February 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2 March 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"fc2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/fc18.ifca.ai\/index.html","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"HotCRP","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"110","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"27","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"25% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3,27","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3,27","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}