JP2004266493A - Anonymous route search request method, search request relay and response methods thereof, anonymous data relay method, and bulletin board providing apparatus - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To achieve a communication where the anonymity of a person who transmits/receives data is protected, on a network environment whose node configuration changes dynamically. <P>SOLUTION: A transmission node 1 sends a route search packet by multicast (steps S1-S3). A relay node 2 adds its own node identifier to anonymous route information for reply for indicating a route for reaching the node for entirely enciphering, and transfers the route search packet to the next node (steps S4-S6). A reception node 3 transmits a route notification packet to the transmission node 1 according to the anonymous route information for reply when the route search packet reaches (steps S7-S9). The relay node 2 enciphers its own node identifier by the public key of a transmission source node, adds its own node identifier to the route notification packet, and transmits its own node identifier to the next node according to the anonymous route information for reply (steps S10-S12). <P>COPYRIGHT: (C)2004,JPO&NCIPI

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to an anonymous route search request method, an anonymous route search request relay method, an anonymous data relay method, an anonymous route search request response method, and an electronic bulletin board providing apparatus that protect anonymity of a data sender / receiver. The present invention relates to an anonymous route search request method, an anonymous route search request relay method, an anonymous data relay method, an anonymous route search request response method, and an electronic bulletin board providing apparatus that are used.
[0002]
[Prior art]
Various information exchanges via the Internet are actively performed. In a technique generally used on the Internet, by analyzing a transmitted packet, a receiver can be determined from the header of the packet, and a packet route can be tracked. As a result, there is a possibility that the privacy of the Internet user may be violated. For example, if the location (IP address or the like) of the terminal used by the poster is known from the contents of the posting on the anonymous bulletin board, there is a risk of being harassed by a malicious third party.
[0003]
Therefore, various techniques for protecting the anonymity of the sender and receiver of data on the Internet have been considered. In order to protect the anonymity of data transmission and reception, it is necessary to encrypt all data communication and not to leak the packet transmission path.
[0004]
In order to prevent leakage of a packet transmission path, it is necessary to shut out leakage of information such as a source and a transfer destination of a packet during communication by utilizing a plurality of relay points (routers). As a technique for preventing such a transmission path from leaking, a technique named "onion routing" is known (for example, see Patent Document 1).
[0005]
In the onion routing method, a robust and fixed router called an onion router controls routing. The transmitting terminal determines a transmission path to the transmission destination in advance, and encrypts information on the transmission path of the packet using the public key of each onion router that relays the packet.
[0006]
The onion router that has received the packet decrypts information about the transmission path using its own secret key. This decoding determines the next transfer destination of the packet, and the onion router transfers the packet to the next node (onion router or receiving terminal). As described above, since each onion router can keep the concealed state except for the next transfer destination, it is not possible to specify the final information of the receiving terminal. In addition, when transmitting a packet, the onion router does not add information on the transmission path up to that point to the packet, thereby preventing leakage of the transmission source.
[0007]
As described above, in onion routing, a data packet multiplexes and retains route information to a destination in a multiplexed manner, so that a part of the route information can be transmitted to each routing node or a person who performs skimming on a network. So that they can only be referenced.
[0008]
[Patent Document 1]
US Patent No. 6,266,704
[0009]
[Problems to be solved by the invention]
However, it is difficult to apply the conventional onion routing method to an environment in which the node configuration changes dynamically. An environment in which the node configuration dynamically changes includes a P2P (Peer to Peer) network.
[0010]
In the P2P network, the participation of the peer node in the network and the exit from the network are arbitrary. For this reason, when communication is performed on the P2P network, the packet is transferred to the peer node of the transmission partner while performing P2P communication between the participating peer nodes at that time. When applying the onion routing method to such a P2P environment, the following problem occurs.
-Fixed routers and fixed routes cannot be determined in advance.
-It is difficult to dynamically respond to node configuration changes during routing.
[0011]
For this reason, in order to perform anonymous communication on an unstable network such as a P2P network, it is necessary to dynamically and anonymously find a route and to cope with a change in node configuration during routing.
[0012]
The present invention has been made in view of such a point, and in a network environment in which a node configuration is dynamically changed, a method for searching for a communication route capable of performing communication while maintaining the anonymity of a data transmitter / receiver. An object of the present invention is to provide an anonymous route search request method, an anonymous route search request relay method, and an anonymous route search request response method.
[0013]
Another object of the present invention is to provide an anonymous data relay method capable of performing reliable communication while protecting anonymity of a data transmitter / receiver in a network environment in which a node configuration changes dynamically. is there.
[0014]
It is another object of the present invention to provide an electronic bulletin board providing apparatus that enables anonymous message exchange between a contributor and a reader of the post.
[0015]
[Means for Solving the Problems]
In the present invention, a system as shown in FIG. 1 is provided to solve the above problems.
[0016]
The transmitting node 1 provides an anonymous route search request method for executing a transmission route search process to a destination by a computer while hiding the transmission source. In the anonymous route search request method, upon receiving a route search request specifying a destination by a destination identifier, the transmitting node 1 encrypts its own node identifier, which is its own identification information, in a format that can be decrypted only by itself, and returns the anonymous reply. The route information is set (step S1). Next, the transmitting node 1 generates a route search packet including the arbitrarily generated anonymous identifier, destination identifier, reply anonymous route information, and source public key for encrypting the reply data (step S2). Finally, the transmitting node 1 transmits a route search packet by broadcast (step S3).
[0017]
As a result, the return route information including the encrypted own node identification information and the route search packet including the transmission source public key are transmitted by broadcast.
In the relay node 2, an anonymous route search request relay method for relaying a transmission route search request in which the transmission source is hidden by a computer is provided. In this anonymous route search request relay method, the relay node 2 includes an anonymous identifier of a transmission source, a destination identifier for designating a search partner, anonymous return route information in which a transmission route from the transmission source to the computer is encrypted, When receiving a route search packet including an adjacent node identifier, which is identification information of an adjacent node, and a source public key for encrypting return data, only the user can decrypt the anonymous route information for reply and the adjacent node identifier. Encrypt in a format (step S4). Next, the relay node 2 adds its own node identifier, which is its own identification information, to the route search packet (step S5). Finally, the relay node 2 broadcasts the route search packet (step S6).
[0018]
As a result, the anonymous route information for reply is given the adjacent node identifier, and is encrypted in a format that can be decrypted only by the relay node 2. Then, a route search packet to which the node identifier of the relay node 2 is added is transmitted by broadcast.
[0019]
The receiving node 3 provides a method of responding to an anonymous route search request for the destination computer to respond to the transmission route search request whose source is hidden. In this anonymous route search request response method, the receiving node 3 transmits the anonymous identifier of the transmission source, the destination identifier indicating the packet addressed to the computer, the anonymous return route information in which the transmission route from the transmission source to the computer is encrypted, the transmission route When receiving a route search packet including an adjacent node identifier, which is identification information of an adjacent node above, and a transmission source public key for return data encryption, the own node identifier, which is its own identification information, and the information addressed to its own node. The receiving node public key for encryption is encrypted with the source public key to obtain root information (step S7). Next, the receiving node 3 specifies the route notification destination with the anonymous identifier, and generates a route notification packet including the anonymous route information for reply, the route information, and the source public key (step S8). Finally, the receiving node 3 transmits a route notification packet to the node indicated by the adjacent node identifier (Step S9).
[0020]
As a result, a route notification packet including the node identifier of the receiving node 3 and the public key is returned via the route according to the return anonymous route information.
In another invention related to the relay node 2, an anonymous data relay method for relaying anonymous communication via an anonymous route by a computer is provided. In this anonymous data relay method, destination anonymous route information in which the next node identifier indicating the next destination on the anonymous route and the anonymous route information from the next destination to the destination are encrypted with the public key of the computer, When receiving a data packet including return anonymous route information indicating a transmission route from the computer to a transmission source and an adjacent node identifier which is identification information of an adjacent node on the transmission route, the destination anonymous route information is stored in the public key. Decrypting with the secret key corresponding to, and determining the next node identifier, set the decrypted data in the data packet as the new destination anonymous route information, the return anonymous route information and the adjacent node identifier Is encrypted with the public key to obtain new return anonymous route information, and the computer is added to the data packet. Add the own node identifier of data to the node indicated by the next node identifier, processing of transmitting the data packet is performed.
[0021]
Thereby, the data packet is relayed while the transmission source and the destination remain anonymous.
Further, in order to solve the above problem, in an electronic bulletin board providing apparatus for performing anonymous message exchange on a network, a message posted on a bulletin board, a first transmission route indicating a first transmission route tracing from a sender of a poster. Registration means for registering the contents of the data packet in a database upon receiving a post data packet addressed to itself including return anonymous route information and a first adjacent node identifier which is identification information of an adjacent node on the first transmission route. And search conditions for the message, second return anonymous route information indicating a second transmission route tracing from the sender of the searcher, and a second adjacent node identifier being identification information of an adjacent node on the second transmission route Receiving a search data packet addressed to itself including a source public key for encrypting return data, Searching means for searching the database, and encrypting means for encrypting the message, the first return anonymous route information, and the first adjacent node identifier detected by the searching means with the source public key. Packet generating means for generating a response data packet including the encrypted data and the second return route information; and transmitting means for transmitting the response data packet to a node indicated by the second adjacent node identifier. An electronic bulletin board providing device is provided.
[0022]
As a result, the message of the poster is notified to a searcher of another country name while the poster of the electronic bulletin board remains anonymous.
[0023]
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, embodiments of the present invention will be described with reference to the drawings.
First, an outline of the invention applied to the embodiment will be described, and then, specific contents of the embodiment will be described.
[0024]
[Summary of the Invention]
FIG. 1 is a conceptual diagram of the invention applied to the embodiment. The communication according to the present invention is performed between the transmitting node 1, the relay node 2, and the receiving node 3. As will be described later, there are generally a plurality of relay nodes 2.
[0025]
When receiving the route search request specifying the destination by the destination identifier, the transmitting node 1 encrypts its own node identifier, which is its own identification information, in a format that can be decrypted only by itself and sets it as the reply anonymous route information (step S1). ). In order to perform encryption so that only oneself can decrypt, for example, encryption is performed using a public key (encryption key) corresponding to a secret key (decryption key) that only the transmission node 1 has.
[0026]
Next, the transmitting node 1 generates a route search packet including the arbitrarily generated anonymous identifier, destination identifier, reply anonymous route information, and source public key for encrypting the reply data (step S2). The anonymous identifier is used for associating the transmitted route search packet with the returned route notification packet. The destination identifier is information for specifying the destination receiving node 3. The destination identifier may be information published in advance. The transmission source public key is an encryption key for encrypting the information when another node passes information such as its own node identifier to the transmission node 1. The secret key (decryption key) corresponding to the transmission source public key is stored in the transmission node 1 in advance.
[0027]
Finally, the transmitting node 1 transmits a route search packet by broadcast (step S3).
Upon receiving the route search packet, the relay node 2 encrypts the return anonymous route information and the adjacent node identifier in a format that only the user can decrypt (step S4). The adjacent node identifier is an identifier of a node adjacent to the relay node 2 in the transmission route of the route search packet. If the route search packet has been sent directly from the transmitting node 1, the node identifier of the transmitting node 1 is the adjacent node identifier. In the encryption processing, for example, encryption is performed using a public key (encryption key) corresponding to a secret key (decryption key) of the relay node 2. Since the reply anonymous route information has already been encrypted by the transmission node or another relay node interposed in the middle of the transmission, it is multiplexly encrypted by the encryption in step S4. Moreover, by encrypting the information including the adjacent node identifier, the node identifier of the adjacent node can be recognized when the information is decrypted.
[0028]
Next, the relay node 2 adds its own node identifier, which is its own identification information, to the route search packet (step S5). Finally, the relay node 2 broadcasts the route search packet (step S6). When a third party analyzes the transmitted route search packet, it can recognize that the packet has been transmitted from the relay node 2, but cannot know the previous transfer route.
[0029]
Upon receiving the route search packet including the destination identifier indicating that the packet is addressed to the receiving node 3, the receiving node 3 discloses the node identifier as its own identification information and the receiving node for encrypting the information addressed to the receiving node 3. The key is encrypted with the source public key to obtain root information (step S7). The source public key can be obtained from the route search packet. Since the set of the node identifier and the receiving node public key is encrypted with the source public key, only the transmitting node 1 can refer to such information.
[0030]
Next, the receiving node 3 specifies the route notification destination by the anonymous identifier of the transmitting node 1, and generates a route notification packet including the anonymous route information for reply, the route information, and the source public key (step S8). Finally, the receiving node 3 transmits a route notification packet to the node indicated by the adjacent node identifier (Step S9). As a result, a route notification packet including the node identifier of the receiving node 3 and the public key is returned via the route according to the return anonymous route information.
[0031]
Upon receiving the route notification packet, the relay node 2 encrypts the own node identifier, which is its own identification information, and the relay node public key for encrypting information addressed to the own node with the source public key, and adds it to the route information. (Step S10). As described above, by adding the pair of the node identifier and the public key of each relay node to the route information, the sending node can be notified of the anonymous route. When a pair of a node identifier and a public key is added to the route information, the pair is added according to a predetermined rule so that the order of adding information can be determined. For example, new information is added before the original information in the route information. Thereby, the transmitting node 1 can recognize the arrangement of each node on the anonymous route.
[0032]
Next, the relay node 2 decodes the anonymous route information for reply, acquires a next node identifier (adjacent node identifier in the route search packet) indicating the node to be the next transmission destination, and transmits the decoded data. The anonymous route information for reply is set in the route notification packet (step S11). Finally, the relay node 2 transmits a route notification packet to the node indicated by the next node identifier (Step S12). Thereby, the route notification packet in which the node identifier of the relay node 2 and the public key are added to the route information is transferred to the route according to the reply anonymous route information.
[0033]
Upon receiving the route notification packet, the transmitting node 1 decrypts the route information with the source private key corresponding to the source public key (step S13). Then, the transmitting node 1 stores the set of the identifier and the public key of each node on the route to the destination obtained by decryption in the recording device while maintaining the array (step S14). By referring to the stored information, an anonymous route to the receiving node 3 can be recognized. In addition, if the public key of each node is used, each node on the root can be notified of only the next node on the anonymous root.
[0034]
In this way, it is possible to protect the anonymity of the data sender / receiver, dynamically search the data transmission / reception path, and perform highly anonymous data communication. Moreover, even if the node configuration is changed during execution of the routing, the data is transmitted via another previously detected anonymous route, so that the reliability of the data transmission can be improved.
[0035]
The function of the anonymous communication as described above can be applied to a P2P network. That is, since each node can appropriately search for an anonymous route, even when the configuration of the network changes dynamically, data communication can be performed with the transmission source kept secret by the anonymous route.
[0036]
By the way, the sender's anonymous identifier and the sender's public key included in the route search packet can be changed as appropriate. For example, each time a route search packet is transmitted, a different anonymous identifier and a different source public key can be used. By not fixing the source public key, the anonymity of the source can be improved. That is, if the anonymous identifier and the public key are always fixed to the sender, the following problem occurs.
1. If a plurality of unencrypted messages having the same anonymous identifier (postings on a bulletin board, etc.) are collected, there is a possibility that the sender can be identified from the contents.
2. Even in the case of an encrypted message, there is a possibility that a person who has decrypted the encrypted message (for example, when a contributor reads a reply to a post on an anonymous bulletin board) can identify the sender from the content.
[0037]
Therefore, by not fixing the anonymous identifier and public key of the same sender between messages, a node that searches an anonymous bulletin board, skimming on the network, or a receiver of a reply message specifies the sender of the message. Can be prevented. That is, by performing disposable management of the anonymous identifier of the node and the public key, the unlinkability between messages can be enhanced. If this is used for an electronic bulletin board, an anonymous bulletin board function that protects the anonymity of data senders and receivers can be realized. Note that unlinkability indicates that it cannot be determined that two types of processing have been performed by the same user.
[0038]
[Embodiment of the invention]
Specific examples for realizing the above functions will be described below as embodiments of the present invention. In the following embodiment, the present invention is applied to a P2P network, and the anonymous communication function is realized by a P2P onion proxy and a P2P onion router. The P2P onion proxy of each P2P onion node performs a route search according to the P2P onion route discovery protocol. Further, P2P onion routing is performed by the P2P onion router of each P2P onion node, and P2P onion route information is detected.
[0039]
Here, the P2P onion route discovery protocol is a protocol for discovering a P2P onion route to a P2P onion node on the receiving side. The P2P onion proxy is a functional unit that manages the P2P onion route discovery protocol of the P2P onion node. The P2P onion route is route information that is multiply encrypted and can cope with a node configuration change. The P2P onion router is a functional unit that manages P2P onion routing processing in a P2P onion node according to P2P onion route information.
[0040]
FIG. 2 is a conceptual diagram of an anonymous communication network. In the present embodiment, the P2P onion node 100 participates in the anonymous communication network 10 including the P2P onion nodes 200, 300, 410, 420, 430, 440, 450. Here, the node name of the P2P onion node 100 is “A”, the node name of the P2P onion node 200 is “B”, the node name of the P2P onion node 410 is “C”, and the node name of the P2P onion node 420 is “D”. , The node name of the P2P onion node 430 is “F”, the node name of the P2P onion node 440 is “F”, the node name of the P2P onion node 450 is “G”, and the node name of the P2P onion node 300 is “X”. .
[0041]
The P2P onion node 100 participates in the anonymous communication network 10 by performing a P2P communication connection with the P2P onion node 200.
The P2P onion node 200 has established a P2P communication connection with the other P2P onion nodes 410, 420, 440, and 450. The P2P onion node 410 further establishes a P2P communication connection with the P2P onion node 430. Similarly, the P2P onion node 420 has established a P2P communication connection with the P2P onion node 430. The P2P onion node 430 has further established a P2P communication connection with the P2P onion node 300.
[0042]
As described above, in the P2P network, a communication network is established by a chain of P2P connections between many P2P onion nodes.
FIG. 3 is a diagram illustrating a hardware configuration example of the P2P onion node used in the embodiment of the present invention. The entire device of the P2P onion node 100 is controlled by a CPU (Central Processing Unit) 101. To the CPU 101, a RAM (Random Access Memory) 102, a hard disk drive (HDD: Hard Disk Drive) 103, a graphic processing device 104, an input interface 105, and a communication interface 106 are connected via a bus 107.
[0043]
The RAM 102 temporarily stores at least a part of an OS (Operating System) program and application programs to be executed by the CPU 101. Further, the RAM 102 stores various data necessary for processing by the CPU 101. The OS and application programs are stored in the HDD 103.
[0044]
The monitor 11 is connected to the graphic processing device 104. The graphic processing device 104 displays an image on the screen of the monitor 11 according to a command from the CPU 101. The keyboard 12 and the mouse 13 are connected to the input interface 105. The input interface 105 transmits a signal transmitted from the keyboard 12 or the mouse 13 to the CPU 101 via the bus 107.
[0045]
The communication interface 106 transmits and receives data to and from another P2P onion node 200.
With the above hardware configuration, the processing functions of the present embodiment can be realized. Although FIG. 3 shows an example of the hardware configuration of the P2P onion node 100, the other P2P onion nodes 200, 300, 410, 420, 430, 440, and 450 can be realized with the same hardware configuration. .
[0046]
By the way, each P2P onion node according to the present embodiment roughly has an anonymous communication infrastructure connection authentication function, an anonymous route discovery function, and an anonymous communication function.
The anonymous communication infrastructure connection authentication function is an authentication request function for itself to participate in the anonymous communication network 10 and a function for authenticating the P2P onion node when another P2P onion node participates in the anonymous communication network 10. is there. By performing connection authentication for the P2P onion node participating in the anonymous communication network 10, it is possible to prevent a person other than a member registered in advance from participating in the anonymous communication network 10.
[0047]
The anonymous route discovery function is a function of searching for a transmission route to a transmission destination according to a P2P onion route discovery protocol.
The anonymous communication function is a function for performing anonymous communication via the discovered route.
[0048]
FIG. 4 is a block diagram showing a schematic functional configuration of the P2P onion node. The P2P onion node 100 has a P2P onion proxy 110, a P2P onion router 120, and a plurality of applications 131 and 132. The P2P onion proxy 110 has an anonymous communication infrastructure connection authentication function and an anonymous route discovery function. Further, the P2P onion router 120 has an anonymous communication function. The applications 131 and 132 transmit and receive a message in response to an operation input or the like from a user. The example of FIG. 4 illustrates a case where the application 131 transmits a message and the application 132 receives the message.
[0049]
The P2P onion node 200 has a P2P onion proxy 210 and a P2P onion router 220. The P2P onion proxy 210 has an anonymous communication infrastructure connection authentication function and an anonymous route discovery function. Further, the P2P onion router 220 has an anonymous communication function.
[0050]
Between the P2P onion nodes 100 and 200 having such a functional configuration, for example, when a connection request to the anonymous communication network 10 is issued from the application 131 or 132, the P2P onion proxy 110 of the P2P onion node 100 and the P2P onion node 200 When the anonymous communication infrastructure connection authentication function with the P2P onion proxy 210 operates in cooperation, mutual connection authentication is performed.
[0051]
Further, when the application 131 receives a message transmission request from the user, a request for searching and obtaining a P2P onion route is issued to the P2P onion proxy 110. Then, the anonymous route discovery function between the P2P onion proxy 110 of the P2P onion node 100 and the P2P onion proxy 210 of the P2P onion node 200 cooperates according to the P2P onion route discovery protocol, thereby performing a route search process. When the route search ends, a message transmission request is issued from the application 131 to the P2P onion router 120. Then, the anonymous communication function between the P2P onion router 120 of the P2P onion node 100 and the P2P onion router 220 of the P2P onion node 200 operates in cooperation, so that onion routing is performed and a message is transmitted by a data packet.
[0052]
When a message to the P2P onion node 100 is sent from another P2P onion node to the P2P onion node 100 by onion routing, the message is passed from the P2P onion router 120 to the application 132.
[0053]
Next, the function of each P2P onion node for realizing the embodiment of the present invention will be described in detail. In addition, each P2P onion node may be a sender of a packet (originating Peer), a recipient of a packet (receiving Peer), or a router that performs packet routing (relay Peer). . Therefore, each P2P onion node needs to have a function as a sending peer, a receiving peer, and a relay peer.
[0054]
FIG. 5 is a block diagram showing a functional configuration of the P2P onion node. The P2P onion node 100 includes a P2P onion proxy 110, a P2P onion router 120, an application 131, a membership card information holding unit 141, a fixed key holding unit 142, an anonymous route information holding unit 143, a temporary key generation unit 151, and an anonymous ID generation unit. 152.
[0055]
The P2P onion proxy 110 includes an anonymous communication connection unit 111, an anonymous route search request unit 112, a route search request relay unit 113, and a route search request response unit 114.
[0056]
The anonymous communication connection unit 111 executes an anonymous communication board connection authentication process. Specifically, upon receiving a connection request from the application 131 to the anonymous board, the anonymous communication connection unit 111 acquires the membership card information from the membership card information holding unit 141, and acquires the fixed public key 142a from the fixed key holding unit 142. To get. Then, the anonymous communication connection unit 111 performs connection authentication with another connectable P2P onion node using the membership card information and the fixed public key 142a. Also, when receiving the connection authentication request from another P2P onion node, the anonymous communication connection unit 111 performs the connection authentication using the membership card information and the fixed public key 142a.
[0057]
The anonymous route search request unit 112 implements a route search request transmission function in the P2P onion route discovery protocol. Specifically, upon receiving the P2P onion route search request from the application 131, the anonymous route search request unit 112 acquires the fixed public key 142a from the fixed key holding unit 142, and sends the temporary public key and the temporary public key from the temporary key generation unit 151. Receive the secret key. Further, the anonymous route search request unit 112 acquires an anonymous ID from the anonymous ID generation unit 152. Then, the anonymous route search request unit 112 generates a route search packet including the obtained key information, the anonymous ID, the own node ID, and the like, and transmits the generated packet through broadband. The node ID is set in the route search packet in a state where the node ID is encrypted with the public key.
[0058]
The route search request relay unit 113 implements a function of relaying a route search request in the P2P onion route discovery protocol. Specifically, when receiving a route search packet from another P2P onion node, the route search request relay unit 113 acquires the fixed public key 142a from the fixed key holding unit 142. Next, the route search request relay unit 113 encrypts information in the return onion (route stack: indicating a transmission route up to that point) in the route search packet with its own fixed public key 142a. After that, the route search request relay unit 113 adds its own node ID to the encrypted information to make a new return onion. Then, the route search request relay unit 113 transfers the route search packet with the updated route stack to another P2P onion node (excluding the source of the route search packet).
[0059]
The route search request response unit 114 implements a function of responding to a route search request in the P2P onion route discovery protocol. Specifically, the route search request response unit 114 generates a route notification packet to the P2P onion node when the route search request responding unit 114 specifies itself as a search target node in a route search packet sent from another P2P onion node. . When responding, the route search request responding unit 114 acquires the fixed public key 142a from the fixed key holding unit 142. Then, the route search request responding unit 114 encrypts its own node ID and the fixed public key 142a using the temporary public key of the route search packet transmission source, and includes it in the route notification packet. The route notification packet is transmitted via the anonymous data transmission unit 121 of the P2P onion router 120.
[0060]
The P2P onion router 120 has an anonymous data transmission unit 121, an anonymous data relay unit 122, and an anonymous data reception unit 123.
The anonymous data transmission unit 121 implements a function of transmitting an anonymous communication data packet in the anonymous communication function. Specifically, the anonymous data transmission unit 121 generates and transmits a data packet for anonymous communication in response to a request from the application 131 or the like. The data packet includes a destination onion indicating an anonymous route. The destination onion is obtained by encrypting the information of the next transmission destination of each P2P onion node using the public key of each P2P onion node on the anonymous route.
[0061]
The anonymous data relay unit 122 implements a data packet relay function of anonymous communication in the anonymous communication function. Specifically, the anonymous data relay unit 122 decrypts the destination onion in the data packet with its own secret key, and confirms the next transmission destination. Then, the anonymous data relay unit 122 transfers the data packet to the next transmission destination.
[0062]
The anonymous data receiving unit 123 implements a function of receiving an anonymous communication data packet in the anonymous communication function. Specifically, if the anonymous ID of the transmission destination of the data packet is its own ID, the anonymous data receiving unit 123 recognizes that the data packet is addressed to itself, and notifies the application 131 of the data in the packet (payload in the payload). Pass). When the received packet addressed to itself is a route notification packet, the anonymous data receiving unit 123 recognizes the anonymous route from the content thereof and stores it in the anonymous route information holding unit 143.
[0063]
The application 131 executes various processes using anonymous communication according to a user's operation input or the like.
The membership card information holding unit 141 is information passed to a user who has performed a predetermined procedure for participating in the anonymous communication network 10. Only the P2P onion node having the membership card information can participate in the anonymous communication network 10.
[0064]
The fixed key holding unit 142 stores key information prepared in advance. The key information is a fixed public key 142a and a fixed secret key 142b. The encrypted data encrypted with the fixed public key 142a can be decrypted only with the fixed secret key 142b. Note that the fixed public key 142a and the fixed secret key 142b can be supplied as a part of the membership card information.
[0065]
The anonymous route information holding unit 143 stores the searched anonymous route information.
The temporary key generation unit 151 generates a temporary key in response to a request from the anonymous route search request unit 112 and the like. The temporary key is a pair of a temporary public key and a temporary secret key.
[0066]
The anonymous ID generation unit 152 generates an anonymous ID in response to a request from the anonymous route search request unit 112 and the like. The anonymous ID is identification information set individually for each series of anonymous communication (anonymous route search and anonymous communication based on the anonymous route).
[0067]
The P2P onion node 100 configured as described above implements the anonymous communication infrastructure connection authentication function, anonymous route discovery function, and anonymous communication function according to the present embodiment. Although FIG. 5 shows constituent elements of the functions of the P2P onion node 100, the other P2P onion nodes 200, 300, 410, 420, 430, 440, and 450 also have similar functions.
[0068]
[Anonymous communication platform connection authentication function]
First, the anonymous communication infrastructure connection authentication function will be described.
FIG. 6 is a diagram illustrating the anonymous communication infrastructure connection authentication function. The anonymous communication infrastructure connection authentication function is such that a certain P2P onion node (in the example of FIG. 6, the P2P onion node 100) participates in the anonymous communication network 10 with another P2P onion node (in the example of FIG. 6, the P2P onion node). 200). Note that the P2P onion node 200 that is the connection destination is referred to as a first connection node when viewed from the P2P onion node 100. Here, it is assumed that the P2P onion node 100 knows the IP address and port number of the first connection node to be connected from the beginning. For example, it is assumed that a freely connectable P2P onion node (a P2P onion node that can be a first connection node) has been published in advance.
[0069]
RSA encryption is used for a cryptographic method such as a P2P onion route used in the anonymous communication network 10. It is assumed that each P2P onion node already has the public key of the RSA encryption, its certificate (public key certificate), private key, and the like. The public key certificate is used as a membership card for the anonymous communication infrastructure, and is used for authentication for the node to participate in the anonymous communication infrastructure. The public key certificate is stored in the membership card information holding unit 141.
[0070]
Here, the processing procedure of the anonymous communication infrastructure connection authentication function when the P2P onion node 100 joins the anonymous communication network 10 with the P2P onion node 200 as the first connection node will be described with reference to FIG. At this time, the anonymous communication infrastructure connection authentication function is executed between the anonymous communication connection unit 111 in the P2P onion proxy 110 of the P2P onion node 100 and the anonymous communication connection unit 211 in the P2P onion proxy 210 of the P2P onion node 200. Is done.
[0071]
[First Processing] The anonymous communication connection unit 111 in the P2P onion node 100 determines a first connection node. Here, the first connection node is an adjacent P2P onion node 200, and there may be a plurality of connection nodes. The IP address and the like of the node that can be designated as the first connection node can be stored in the membership card information holding unit 141 in advance. Further, the user can directly input the IP address and the like of the first connection node by using the GUI.
[0072]
[Second Process] The P2P onion proxy (the anonymous communication connection unit 111 in the P2P onion proxy 110) of the new participating node (P2P onion node 100) starts connection to the first connection node (P2P onion node 200). Hand over the fixed public key 142a and the membership card 141a.
[0073]
[Third Process] The P2P onion proxy (anonymous communication connection unit 211 in the P2P onion proxy 210) of the connected first connection node (P2P onion node 200) also newly adds its own fixed public key 242a and membership card 241a. Hand over to the participating node (P2P onion node 100).
[0074]
[Fourth Process] The membership card is confirmed at both the newly joining node (P2P onion node 100) and the first connection node (P2P onion node 200). If there is a problem such as expiration, stop communication.
[0075]
[Fifth Process] The new participant node (P2P onion node 100) and the first connection node (P2P onion node 200) exchange data encrypted with each other's fixed public key. Then, both nodes decrypt the received data and return it to the other party. Each of the P2P onion nodes 100 and 200 judges that the data transmitted to the other party is a service qualification holder on the anonymous P2P network platform if the data is correctly decrypted and returns. Thereafter, the P2P onion node 100 can participate in the anonymous communication network 10 via the P2P onion node 200. That is, the P2P onion node 100 is a node on the anonymous communication platform. As a result, an anonymous communication network 10 as shown in FIG. 2 is formed.
[0076]
[Anonymous route discovery function]
Next, the anonymous route discovery function will be described using an example of an anonymous route search when data is transmitted from the P2P onion node 100 to the P2P onion node 300.
[0077]
FIG. 7 is a diagram illustrating the anonymous route discovery function. The anonymous route discovery function uses the P2P onion route discovery protocol to anonymously route information from the transmitting peer (P2P onion node 100 in the example of FIG. 7) to the receiving peer (P2P onion node 300 in the example of FIG. 7). It is a function to construct a P2P onion route from the collected route information. The route information includes an identifier of each peer that constitutes a route to the receiving peer and a public key. The P2P onion route discovery protocol constructs a P2P onion route in the following procedure. The anonymous route discovery function is realized by the P2P onion proxies 110, 210, 310 and the P2P onion routers 120, 220, 320 of each of the P2P onion nodes 100, 200, 300. In particular, in the transmission Peer (P2P onion node 100), the anonymous route search request unit 112 of the P2P onion proxy 110 performs processing, and in the relay Peer (P2P onion node 200), the route search request relay unit 213 of the P2P onion proxy 210 performs processing. Then, in the receiving peer (P2P onion node 300), the route search request response unit 314 executes the processing.
[0078]
At the time of the route search, the route search packet 20 is broadcast-transmitted from the transmission peer (P2P onion node 100), and the route notification packet 30 is returned from the reception peer (P2P onion node 300) that has received the route search packet 20. .
[0079]
FIG. 8 is a diagram illustrating an example of a data structure of a route search packet. The route search packet 20 includes a message flag 21, a destination (To) 22, a source (From) 23, a destination onion 24, a return onion 25, and temporary key information 26 for reply encryption.
[0080]
The message flag 21 indicates the type of the packet. In the case of the route search packet 20, information indicating that the packet is for route search broadcast transmission is set.
[0081]
In the destination 22, the destination of the route search packet 20 is set. The destination is indicated by identification information (public ID) of the receiving peer that has been published in advance.
In the transmission source 23, the anonymous ID of the transmission peer is set.
[0082]
The destination onion 24 is information indicating a route to the destination, but is blank in the route search packet 20.
In the return onion 25, a transmission path for returning the route notification packet 30 to the route search packet 20 is set by being multiplexed and encrypted.
[0083]
The reply encryption temporary key information 26 is a temporary public key of the sending peer and an encrypted temporary secret key used when returning the route notification packet 30.
FIG. 9 is a diagram illustrating an example of the data structure of the route notification packet. The route notification packet 30 includes a message flag 31, a destination (To) 32, a source (From) 33, a destination onion 34, a return onion 35, route information 36, and temporary key information 37 for reply encryption.
[0084]
The message flag 31 indicates the type of the packet. In the case of the route notification packet 30, information indicating that the packet is for returning a route search is set.
[0085]
In the destination 32, the destination of the route notification packet 30 is set. The destination is the anonymous ID of the transmission peer set as the transmission source 23 of the route search packet 20.
A public ID (public ID) of the receiving peer is set in the transmission source 33.
[0086]
The destination onion 34 is information indicating a route to the destination. This is a transcription of the return onion 25 of the route search packet 20 in the receiving peer. However, the destination onion 34 deletes the information indicating the past transmission path every time the packet is relayed.
[0087]
The return onion 35 is blank in the route notification packet 30.
The route information 36 is information indicating a transmission route of anonymous communication. In the route information, the node ID and the fixed public key of each P2P onion node on the transmission route are set by being encrypted with the fixed public key of the transmission peer. The route information 36 also includes temporary key information 26 for reply encryption of the route search packet 20.
[0088]
In the reply encryption temporary key information 37, the content of the reply encryption temporary key information 26 of the route search packet 20 is set as it is.
FIG. 10 is a sequence diagram illustrating a processing procedure of the anonymous route discovery function. Hereinafter, the processing illustrated in FIG. 10 will be described along with step numbers.
[0089]
[Step S21] The anonymous route search request unit 112 of the transmission peer (P2P onion node 100) receives a message transmission request from the application 131. It is assumed that the user of the P2P onion node 100 knows in advance the node ID of the P2P onion node 300 that is the receiving peer.
[0090]
[Step S22] The anonymous route search request unit 112 generates the route search packet 20. The route search packet 20 includes the public ID of the receiving peer, the anonymous ID of the transmitting peer, the temporary key (temporary public key and temporary secret key) of the transmitting peer, and the like. The application 131 acquires the public ID of the receiving peer based on an operation input or the like from the user. The anonymous ID of the transmission peer is obtained from the anonymous ID generation unit 152. The node ID of the sending peer is obtained from a general communication function (communication protocol) of the P2P onion node 100. The temporary key of the transmission peer is acquired from the temporary key generation unit 151.
[0091]
The return onion 25 of the route search packet 20 is generated from the node ID of the sending peer and the fixed public key. Specifically, the anonymous route search request unit 112 acquires the fixed public key 142a from the fixed key holding unit 142. Next, the anonymous route search request unit 112 encrypts the node ID of the transmission peer with the fixed public key 142a. Then, the anonymous route search request unit 112 sets a set of the node ID of the encrypted transmission Peer and the node ID of the unencrypted transmission Peer as the return onion 25. At this time, a return flag (in this embodiment, a symbol “＾”) is added to the node ID of the transmission peer that has not been encrypted. The return flag indicates that the route is for returning to the transmission source.
[0092]
The reply encryption temporary key information 26 is generated from the temporary key of the transmission peer and the fixed public key 142a. Specifically, the anonymous route search request unit 112 encrypts the temporary private key of the transmission peer with the fixed public key 142a. Then, the anonymous route search request unit 112 sets a pair of the encrypted temporary secret key and the unencrypted temporary public key as the return encryption temporary key information 26.
[0093]
[Step S23] The anonymous route search request unit 112 broadcasts a route search packet. In the present embodiment, since the only node connected to the P2P onion node 100 is the P2P onion node 200, the first stage is to transfer only to the P2P onion node 200 (see FIG. 2).
[0094]
[Step S24] When receiving the route search packet 20, the route search request relay unit 213 of the relay peer (P2P onion node 200) checks the public ID of the received peer set as the destination 22. If it is not the route search packet 20 addressed to itself, the process proceeds to step S25 for packet relay. Each P2P onion node holds its own public ID in a memory or the like (for example, a membership card information holding unit) in advance.
[0095]
[Step S25] The route search request relay unit 213 updates the return onion. Specifically, the route search request relay unit 213 encrypts the return onion 25 in the received route search packet 20 with the fixed public key of the relay peer. Then, the route search request relay unit 213 adds the node ID (with a return flag) of the relay Peer to the encrypted information to obtain a new return onion 25.
[0096]
[Step S26] The route search request relay unit 213 broadcasts the route search packet 20. In the present embodiment, since four P2P onion nodes 410, 420, 440, and 450 are connected to the P2P onion node 200 in addition to the transmitting peer (P2P onion node 100), the four P2P onions are connected. The route search packet 20 is transmitted to the nodes 410, 420, 440, and 450 (see FIG. 2).
[0097]
Thereafter, in each of the P2P onion nodes 410, 420, 440, and 450, the route search packet 20 is relayed, and finally arrives at the receiving peer (P2P onion node 300). In the receiving peer (P2P onion node 300) that has received the route search packet 20, the following processing is performed.
[0098]
[Step S27] Upon receiving the route search packet 20, the route search request responding unit 314 checks the destination 22. If it is the route search packet 20 addressed to itself, the process proceeds to step S28 to respond.
[0099]
The function of confirming the destination 22 of the route search packet 20 in each P2P onion node is a function shared by the route search request relay unit and the route search request response unit. That is, in practice, when the route search packet 20 is received, the confirmation function of the destination 22 operates, and if it is addressed to itself, the confirmation result to that effect is transmitted to the route request response unit. Is transmitted to the route search request relay unit.
[0100]
[Step S28] The route search request responding unit 314 generates the route notification packet 30. The route notification packet 30 includes the node ID of the receiving peer and the fixed public key in addition to the information included in the route search packet 20.
[0101]
Specifically, the route search request response unit 314 sets the information of the transmission source 23 of the route search packet 20 to the destination 32 of the route notification packet 30. The route search request responding unit 314 sets the information of the destination 22 of the route search packet 20 to the source 33 of the route notification packet 30. The route search request response unit 314 sets the information of the return onion 25 of the route search packet 20 to the destination onion 34 of the route notification packet 30. The route search request responding unit 314 uses the temporary public key of the transmission peer in the return encryption temporary key information 26 of the route search packet 20 to encrypt the set of the node ID of the reception peer and the fixed public key. Information 36 is set. Then, the route search request response unit 314 sets the information of the reply encryption temporary key information 26 of the route search packet 20 in the reply encryption temporary key information 37 of the route notification packet 30.
[0102]
The route search request responding unit 314 passes the generated route notification packet 30 to the anonymous data transmitting unit 321 in the P2P onion router 320 of the receiving peer, and requests anonymous communication.
[0103]
[Step S29] The anonymous data transmission unit 321 determines the destination of the route notification packet 30 based on the return onion 25 of the route search packet 20, and transmits the route notification packet 30 to the destination. Specifically, the return onion 25 includes an unencrypted node ID (a node ID of an adjacent P2P onion node) and encrypted information (an encrypted path that reaches the adjacent P2P onion node). That was included). Therefore, the anonymous data transmission unit 321 transmits the route notification packet 30 to the P2P onion node with the node ID that has not been encrypted.
[0104]
The route notification packet 30 is relayed in each P2P onion node. The relay process in the P2P onion node 200 will be described below.
[Step S30] The anonymous data relay unit 222 in the P2P onion router 220 of the relay peer (P2P onion node 200) checks the destination. Each P2P onion node stores a list of anonymous IDs issued by itself and compares the list of anonymous IDs with the destination of the packet to determine whether the packet is addressed to itself. Can be. In the case of the route notification packet 30 addressed to another node, the anonymous data relay unit 222 proceeds with the process to step S31.
[0105]
[Step S31] The anonymous data relay unit 222 updates the destination onion 34 of the route notification packet 30. Specifically, the anonymous data relay unit 222 deletes its own node ID added to the destination onion 34 and decrypts the encrypted information using the fixed secret key. Then, the anonymous data relay unit 222 sets the decrypted information as a new destination onion 34.
[0106]
[Step S32] The anonymous data relay unit 222 updates the route information 36 of the route notification packet 30. Specifically, the anonymous data relay unit 222 encrypts its own node ID and fixed public key with the temporary public key of the transmission Peer and stacks it on the route information 36 (in the present embodiment, the route information up to that time). Followed by additional encrypted information). As a result, in the route information 36, information (node ID and fixed public key) on each P2P onion node on the transmission path is arranged in the order along the path.
[0107]
[Step S33] The anonymous data relay unit 222 determines the destination of the route notification packet 30 based on the destination onion 34, and transmits the route notification packet 30 to the destination. More specifically, the destination onion 34 has an unencrypted node ID (node ID of the adjacent P2P onion node) and encrypted information (a path until reaching the adjacent P2P onion node is encrypted). Was also included). Therefore, the anonymous data relay unit 222 transmits the route notification packet 30 to the P2P onion node having the unencrypted node ID.
[0108]
As a result, the route notification packet 30 is passed to the P2P onion node 100 that is the transmission peer. In the P2P onion node 100, the following processing is performed.
[Step S34] The anonymous data receiving unit 123 of the P2P onion router 120 of the sending peer confirms the destination. In the case of the route notification packet 30 addressed to another node, the anonymous data relay unit 222 proceeds with the process to step S31.
[0109]
The function of confirming the destination 32 of the route notification packet in each P2P onion node is a function shared by the anonymous data relay unit and the anonymous data reception unit. That is, in practice, when the route notification packet 30 is received, the check function of the destination 32 operates, and if it is addressed to itself, the confirmation result to that effect is transmitted to the anonymous data receiving unit. Is transmitted to the anonymous data relay unit.
[0110]
[Step S35] The anonymous data receiving unit 123 acquires anonymous route information from the route information 36 in the route notification packet 30 to the receiving peer, and stores it in the anonymous route information holding unit 143. Specifically, the anonymous data receiving unit 123 converts the encrypted information (the temporary secret key encrypted with the fixed public key 142a) included in the reply encryption temporary key information 37 into the fixed secret key 142b. And decrypt it. Thereby, a temporary secret key can be obtained. The fixed secret key 142b can be obtained from the fixed key holding unit 142.
[0111]
Next, the anonymous data receiving unit 123 decrypts each piece of information included in the route information 36 using the obtained temporary secret key. Thus, a list of node IDs of P2P onion nodes on the route to the receiving peer (ordered in the order along the route) is obtained. The anonymous data receiving unit 123 stores the obtained list in the anonymous route information holding unit 143 as anonymous route information.
[0112]
As described above, the search for the anonymous route is completed.
FIG. 11 is a diagram illustrating a transmission route of a route search packet. FIG. 11 shows a state in which the route search packet 20a output from the P2P onion node 100, which is the transmission peer, is relayed while being changed in content, and reaches the P2P onion node 300, which is the reception peer.
[0113]
The P2P onion node 200 that has received the route search packet 20a output from the P2P onion node 100 generates route search packets 20b and 20e in which the own information is added to the return onion, and generates the P2P onion node 410, the P2P onion node 420, and the like. Send to
[0114]
The P2P onion node 410 generates a route search packet 20c in which its own information is added to the return onion, and transmits it to the P2P onion node 430. The P2P onion node 430 generates a route search packet 20d in which its own information is added to the return onion, and transmits the route search packet 20d to the P2P onion node 300.
[0115]
Similarly, the P2P onion node 420 generates a route search packet 20f in which its own information is added to the return onion, and transmits it to the P2P onion node 430. The P2P onion node 430 generates a route search packet 20g in which its own information is added to the return onion, and transmits the route search packet 20g to the P2P onion node 300.
[0116]
Thus, the two route search packets 20d and 20g reach the P2P onion node 300 that is the receiving peer. That is, the route search packet reaches the receiving peer via various routes. Therefore, a plurality of route notification packets are also returned.
[0117]
Here, the internal information of the route search packet transmitted via the P2P onion node 420 will be described in detail.
FIG. 12 is a diagram illustrating a state transition state of the route search packet. In the following description, when other information is shown in parentheses to the right of the key symbol, the information in parentheses is information encrypted with the key.
[0118]
The route search packet 20a passed from the P2P onion node 100 to the P2P onion node 200 includes a message flag “route search broadcast”, a destination (To) “public ID of the node“ X ””, and a transmission source (From) ”node“ A ”. , Anonymous ID # 1 ”, destination onion (none), return onion“ @ Aid + APk (Aid) ”, and reply encryption temporary key information“ ATPk, APk (ATSk) ”are registered here. “＾” in the above is a return flag. Aid is the node ID of the node “A”. APk is a fixed public key of the node “A”. In the reply encryption temporary key information, ATPk indicates the temporary public key of the node “A”, and ATSk indicates the temporary secret key of the node “A”.
[0119]
In the route search packet 20e passed from the P2P onion node 200 to the P2P onion node 420, the return onion has been changed to "@ Bid + BPk [@ Aid + APk (Aid)]". Here, Bid in the return onion is a node ID of the node “B”, and BPk is a fixed public key of the node “B”. As described above, the transmission source is hidden by encrypting the information of the node “A” with the fixed public key of the node “B”.
[0120]
In the route search packet 20f passed from the P2P onion node 420 to the P2P onion node 430, the return onion has been changed to ＾ Did + DPk [＾ Bid + BPk [＾ Aid + APk (Aid)]]. Here, Did in the return onion is the node ID of the node “D”, and DPk is the fixed public key of the node “D”.
[0121]
In the route search packet 20g passed from the P2P onion node 430 to the P2P onion node 300, the return onion is changed to $ Eid + EPk [$ Did + DPk [$ Bid + BPk [$ Aid + APk (Aid)]]. Here, Eid in the return onion is the node ID of the node “E”, and EPk is the fixed public key of the node “E”.
[0122]
The P2P onion node 300 that has received the route search packet 20g can recognize that it is addressed to itself by the destination. However, it is only possible to recognize what route has been sent from the P2P onion node 430 with the node name “E”.
[0123]
Next, a transmission path of a route notification packet transmitted from the P2P onion node 300 will be described.
FIG. 13 is a diagram illustrating a transmission route of the route notification packet. FIG. 13 shows a state in which two route notification packets 30a and 30e output from the P2P onion node 300, which is the receiving peer, are relayed while being changed in content, and reach the P2P onion node 100, which is the transmitting peer. Is shown.
[0124]
Upon receiving the route notification packet 30a output from the P2P onion node 300, the P2P onion node 430 deletes its own information from the return onion, generates a route notification packet 30b in which its information is added to the route information, and generates a P2P onion. Transmit to the onion node 410. The P2P onion node 410 deletes its own information from the return onion, generates a route notification packet 30c in which its information is added to the route information, and transmits it to the P2P onion node 200. The P2P onion node 200 deletes its own information from the return onion, generates a route notification packet 30 d in which its own information is added to the route information, and transmits it to the P2P onion node 100.
[0125]
Also, the P2P onion node 430, which has received the route notification packet 30e output from the P2P onion node 300, deletes its own information from the return onion and generates a route notification packet 30f in which its own information is added to the route information. , P2P onion node 420. The P2P onion node 420 deletes its information from the return onion, generates a route notification packet 30g in which its information is added to the route information, and transmits it to the P2P onion node 200. The P2P onion node 200 deletes its own information from the return onion, generates a route notification packet 30h in which its information is added to the route information, and transmits it to the P2P onion node 100.
[0126]
Thus, the two route notification packets 30d and 30h arrive at the P2P onion node 100 that is the transmission peer.
Here, the internal information of the route search packet transmitted via the P2P onion node 420 will be described in detail.
[0127]
FIG. 14 is a diagram illustrating a state transition state of the route notification packet.
The route notification packet 30e passed from the P2P onion node 300 to the P2P onion node 430 includes a message flag “route search reply”, a destination (To) “anonymous ID # 1 of the node“ A ”, and a transmission source (From)” node. "X" public ID ", destination onion" @ Eid + EPk [@ Did + DPk [@ Bid + BPk [@ Aid + APk (Aid)]]] ", return onion (none), route information" ATPk (Xid, XPk) ", reply encryption The temporary key information “ATPk, APk (ATSk)” is registered, where Xid in the route information is the node ID of the node “X”, and XPk is the fixed public key of the node “X”.
[0128]
In the route notification packet 30f passed from the P2P onion node 430 to the P2P onion node 420, the destination onion is changed to ＾ Did + DPk [＾ Bid + BPk [＾ Aid + APk (Aid)]]. As described above, the P2P onion node 430 having the node name “E” deletes its own node ID from the destination onion and decrypts the remaining information with its own fixed secret key. As a result, the transmission route of the route notification packet is concealed, and only the next transfer destination (Did) can be recognized. ATPk (Eid, EPk) is stacked in the route information.
[0129]
In the route notification packet 30g passed from the P2P onion node 420 to the P2P onion node 200, the destination onion has been changed to $ Bid + BPk [$ Aid + APk (Aid)]. ATPk (Did, DPk) is stacked in the route information.
[0130]
In the route notification packet 30h passed from the P2P onion node 200 to the P2P onion node 100, the destination onion is changed to ＾ Aid + APk (Aid). ATPk (Bid, BPk) is stacked in the route information.
[0131]
The P2P onion node 100 that has received the route notification packet 30h can recognize that it is addressed to itself by the destination. If the route information is decrypted with the temporary secret key, the transmission route (anonymous route) of the anonymous communication can be recognized. As a result, the anonymous route information holding unit 143 stores one or more anonymous route information.
[0132]
FIG. 15 is a diagram illustrating an example of a data structure in the anonymous route information holding unit. FIG. 15 shows anonymous route information 143a and 143b stored based on the route notification packets 30d and 30h returned on the two routes shown in FIG.
[0133]
In the anonymous route information 143a, “Bid → Cid → Eid → Xid” is set as the route information. This indicates that the P2P onion node indicated by the node ID on the left is closer to the P2P onion node that is the transmission peer. That is, by transferring the packet from left to right in the array of node IDs indicated by the route information, the packet reaches the P2P onion node 300 with the node ID “Xid”.
[0134]
In the anonymous route information 143a, a fixed public key "BPk, CPk, EPk, XPk" of each P2P onion node on the route is registered. By using the fixed public key, it is possible to encrypt a packet for performing onion routing.
[0135]
In the anonymous route information 143b, “Bid → Did → Eid → Xid” and the fixed public key “BPk, DPk, EPk, XPk” of each P2P onion node on the route are registered as the route information.
[0136]
[Anonymous communication function]
Next, the acquired anonymous communication function via the anonymous route will be described.
FIG. 16 is a conceptual diagram illustrating the anonymous communication function. FIG. 16 illustrates an example in which a data packet 40 addressed to the P2P onion node 300 is transmitted from the P2P onion node 100 via the P2P onion node 200. At this time, in the P2P onion node 100 that is the transmission peer, the anonymous data transmission unit 121 performs the processing, in the P2P onion node 200 that is the relay peer, the anonymous data relay unit 222 performs the processing, and the P2P onion node that is the reception peer In 300, the anonymous data receiving unit 323 executes a process.
[0137]
FIG. 17 is a diagram illustrating an example of the data structure of a data packet. The data packet 40 includes a message flag 41, a destination (To) 42, a transmission source (From) 43, a destination onion 44, a return & backtrack onion 45, and a payload 46.
[0138]
The message flag 41 indicates the type of the packet. In the case of the data packet 40, information indicating that the packet is a data communication packet (normal packet) is set.
[0139]
In the destination 42, the destination of the data packet 40 is set. The destination is the public ID of the receiving peer.
In the transmission source 43, the anonymous ID of the transmission peer is set. This anonymous ID is different from that used when searching for an anonymous route.
[0140]
The destination onion 44 is information indicating a route to the destination. This is generated based on the anonymous route information acquired from the anonymous route information holding unit 143. The destination onion 44 is obtained by encrypting the route information with the public key of each P2P onion node so that only the next node can recognize each P2P onion node on the anonymous route.
[0141]
The return & backtrack onion 45 is route information indicating a return route and a route for performing backtrack processing. The backtracking process is a process of transmitting a packet via another route when communication cannot be performed on a scheduled route.
[0142]
The payload 46 is actual data including data obtained by encrypting the message to be transferred with the fixed public key of the receiving peer.
Next, a processing procedure of the anonymous communication function will be described.
[0143]
FIG. 18 is a sequence diagram illustrating a processing procedure of the anonymous communication function. Hereinafter, the processing illustrated in FIG. 18 will be described along with step numbers.
[Step S41] The anonymous data transmission unit 121 in the P2P onion router 120 of the P2P onion node 100 that is the transmission peer receives a message transmission instruction from the application 131.
[0144]
[Step S42] The anonymous data transmitting unit 121 selects an anonymous route from the anonymous route information holding unit 143 to the P2P onion node of the transmission partner. At this time, if there are many anonymous routes, a predetermined number of anonymous routes are selected from among them. For example, an anonymous route with a small number of relay nodes is preferentially selected.
[0145]
[Step S43] The anonymous data transmission unit 121 generates the data packet 40. The data packet 40 includes information such as the public ID of the received peer, its own anonymous ID, anonymous route information, message data, and its own temporary key (temporary public key and temporary secret key).
[0146]
Specifically, the anonymous data transmission unit 121 sets information indicating that the packet is a data packet in the message flag 41. The public ID of the P2P onion node 300 is set in the destination 42. The sender 43 is set with an anonymous ID. The set anonymous ID is newly generated by the anonymous ID generation unit 152.
[0147]
Anonymous route information selected from the anonymous route information holding unit 143 is set in the destination onion 44. At this time, the anonymous data transmission unit 121 sequentially selects the node IDs indicated by the anonymous route information in order from the closest to the destination node. The anonymous data transmission unit 121 encrypts the first selected node ID (destination node ID) with the fixed public key corresponding to the next selected node ID. Then, the anonymous data transmission unit 121 adds sequentially selected node IDs to the data encrypted immediately before, and then encrypts the whole with the fixed public key corresponding to the next selected node ID. Then, the anonymous data transmission unit 121 assigns the last selected node ID to the data encrypted immediately before, and the data of the destination onion 44 is generated. Thus, each node that relays the data packet decrypts the destination onion 44 with its own fixed secret key, so that only the next destination can be recognized.
[0148]
In the return & backtrack onion 45, its own node ID and data obtained by encrypting the node ID with the fixed public key 142a are set. In the payload 46, in addition to the message data passed from the application 131, information obtained by encrypting predetermined information with the fixed public key of the receiving peer is set. The information to be encrypted is information obtained by encrypting the message header, own temporary public key, and own temporary secret key with a fixed public key. Note that the temporary public key and the temporary secret key at this time are newly generated by the temporary key generation unit 151.
[0149]
[Step S44] The anonymous data transmission unit 121 transmits a data packet according to an anonymous route. In this example, it is transmitted to the P2P onion node 200.
[Step S45] The anonymous data relay unit 222 in the P2P onion router 220 of the P2P onion node 200 receives the data packet 40 and checks the destination 42. If it is addressed to another P2P onion node, the following processing is performed.
[0150]
[Step S46] The anonymous data relay unit 222 selects the next route. Specifically, the anonymous data relay unit 222 deletes its own node ID from the destination onion 44. Next, the anonymous data relay unit 222 decrypts the remaining information with its own fixed secret key. This makes it possible to refer to the set of the next transfer destination node ID and the anonymous route information. One next transfer destination is selected from one or more node IDs indicating the transfer destination. The unselected anonymous route information is used for backtracking.
[0151]
[Step S47] The anonymous data relay unit 222 updates the destination onion 44. Specifically, a set of the node ID selected in step S46 and an anonymous route corresponding to the node ID is set in the destination onion 44.
[0152]
[Step S48] The anonymous data relay unit 222 updates the return & backtrack onion 45.
Specifically, the anonymous data relay unit 222 adds a set of the node ID and the anonymous route information not selected in step S46 to the return & backtrack onion 45 of the data packet 40 for backtrack processing. Then, the anonymous data relay unit 222 encrypts the return & backtrack onion 45 with its own fixed public key, and adds its own node ID to the return & backtrack onion 45.
[0153]
If there is no anonymous route information for backtracking, the content of the encrypted information is only the return onion, and thus a return flag (フ ラ グ) is added to its own node ID.
[0154]
[Step S49] The anonymous data relay unit 222 transmits the data packet 40. The transmission destination of the data packet 40 is an adjacent P2P onion node indicated by a referenceable node ID in the information of the destination onion 44.
[0155]
[Step S50] The anonymous data relay unit 222 determines whether the transmitted data packet 40 has been correctly transmitted to the next node. If the transmission is normal, the process ends. If the transmission has failed, the process proceeds to step S51. If it is known before the transmission of the data packet 40 that the communication to the destination node is interrupted, the process proceeds to step S51 without performing the transmission process of step S49.
[0156]
[Step S51] The anonymous data relay unit 222 determines whether there is another piece of anonymous route information. If the return flag is set in the return & backtrack onion 45 of the data packet 40 for which transmission failed, there is no other anonymous route information (only one anonymous destination anion 44 of the data packet 40 received in step S45). When the route information is not included and the return flag of the return & backtrack onion 45 of the data packet 40 is set). If there is another piece of anonymous route information, the process proceeds to step S52. If there is no other anonymous route information, the process proceeds to Step S55.
[0157]
[Step S52] The anonymous data relay unit 222 updates the destination onion 44 of the data packet 40. Specifically, the anonymous data relay unit 222 sets the data decrypted in step S51 in the destination onion 44.
[0158]
[Step S53] The anonymous data relay unit 222 updates the return & backtrack onion 45 of the data packet 40. Specifically, the anonymous data relay unit 222 sets the contents of the return & backtrack onion 45 of the data packet 40 to null (null).
[0159]
[Step S54] The anonymous data relay unit 222 transmits the data packet 40. The transmission destination of the data packet 40 at this time is a P2P onion node indicated by a node ID recognizable by the return onion decoded in step S51.
[0160]
[Step S55] If there is no other anonymous route information, the anonymous data relay unit 222 transmits the data packet by multicast to all the connection destinations recognized at that time.
[0161]
[Step S56] When the data packet 40 reaches the P2P onion node 300 that is the receiving peer, the anonymous data receiving unit 323 in the P2P onion router 320 of the P2P onion node 300 checks the destination. If it is the data packet 40 addressed to itself, the process proceeds to step S57.
[0162]
[Step S57] The anonymous data receiving unit 323 decrypts the payload 46 with its own fixed secret key.
[Step S58] The anonymous data receiving unit 323 passes the decrypted message header, the key information of the transmission peer (the temporary public key and the encrypted temporary secret key), and the message to the application.
[0163]
Thus, the data packet 40 is transmitted to the receiving peer. The procedure for returning from the receiving peer is the same as the procedure for transmitting the route notification packet 30.
FIG. 19 is a diagram illustrating a transmission path of a data packet. As shown in FIG. 19, the data packet 40a output from the P2P onion node 100 includes a plurality of P2P onion nodes 200 and 410, which are relay peers, when the transmission path of the anonymous route discovered at the time of the route search continues. , 430, the content is changed and passed to the P2P onion node 300 that is the receiving peer.
[0164]
The P2P onion node 200 that has received the data packet 40a transmits the data packet 40b in which the destination onion and the return & backtrack onion are updated to the P2P onion node 410. The P2P onion node 410 that has received the data packet 40b transmits the data packet 40c in which the destination onion and the return & backtrack onion have been updated to the P2P onion node 430. The P2P onion node 430 that has received the data packet 40c transmits the data packet 40d in which the destination onion and the return & backtrack onion are updated to the P2P onion node 300.
[0165]
FIG. 20 is a diagram illustrating a state transition state of a data packet. The data packet 40a output from the P2P onion node 100 includes a message flag “normal”, a destination (To) “public ID of the node“ X ”, a transmission source (From)” anonymous ID # 2 of the node “A”, and a destination onion. "Bid + BPk [Cid + CPk (Eid + EPk (Xid)), Did + DPk (Eid + EPk (Xid))]]", return & backtrack onion "@Aid + APk (Aid)", payload "XPk [message, ATPk, APk (ATSK), data] ] ”Is set.
[0166]
In the data packet 40b passed from the P2P onion node 200 to the P2P onion node 410, the destination onion is changed to “Cid + CPk (Eid + EPk (Xid))”, and the return & backtrack onion is changed to “Bid + BPk [＾ Aid + APk (Aid), Did + DPk ( Eid + EPk (Xid))] ”.
[0167]
In the data packet 40c passed from the P2P onion node 410 to the P2P onion node 430, the destination onion is changed to “Eid + EPk (Xid)”, and the return & backtrack onion is changed to “Cid + CPk [Bid + BPk [＾ Aid + APk (Aid), Did + DPk (Eid + EPk). (Xid))]] ”.
[0168]
In the data packet 40d passed from the P2P onion node 430 to the P2P onion node 300, the destination onion is changed to “Xid”, and the return & backtrack onion is changed to “Eid + EPk [Cid + CPk [Bid + BPk [＾ Aid + APk (Aid), Did + DPk (Eid + EPk). Xid))]]] ”.
[0169]
In this way, each time the data is relayed, the encrypted information of the destination onion is decrypted once, and each time, the next transfer destination can be recognized. Further, the return & backtrack onion is encrypted each time relaying is performed, and the node ID of the relayed P2P onion node is added.
[0170]
Here, consider a case where transmission of data packet 40c from P2P onion node 410 to P2P onion node 430 has failed. At that time, the backtracking process is performed in the P2P onion node 410.
[0171]
FIG. 21 is a diagram showing a transmission path of a data packet in the backtrack processing. If the transmission of the data packet 40c fails in the P2P onion node 410, the data packet 40e is transmitted from the P2P onion node 410 to the P2P onion node 200.
[0172]
The P2P onion node 200 transmits the data packet 40f to the P2P onion node 420, which is another route. P2P onion node 420 transmits data packet 40 g to P2P onion node 430. The P2P onion node 430 transmits the data packet 40h to the P2P onion node 300.
[0173]
FIG. 22 is a diagram showing a state transition state of a data packet at the time of backtrack transfer. The data packet 40e transmitted from the P2P onion node 410 has a message flag “normal”, a destination (To) “public ID of the node“ X ”, a transmission source (From)” anonymous ID # 2 of the node “A”, and a destination onion. "Bid + BPk [@ Aid + APk (Aid), Did + DPk (Eid + EPk (Xid))]", return & backtrack onion "null", and payload "XPk [message header, ATPk, APk (ATSk), message data]" are set. I have.
[0174]
In this example, the destination onion includes another anonymous route information and return anonymous route information. Therefore, the P2P onion node 200 sets another anonymous route information as the subsequent destination onion, and sets the return anonymous route information as the return & backtrack onion.
[0175]
In the data packet 40f passed from the P2P onion node 200 to the P2P onion node 420, the destination onion is changed to Did + DPk (Eid + EPk (Xid)), and the return & backtrack onion is changed to "@ Bid + BPk [@ Aid + APk (Aid)]". Since the content of the return & backtrack onion is only the anonymous route information, the return flag is set.
[0176]
In the data packet 40g passed from the P2P onion node 420 to the P2P onion node 430, the destination onion is changed to “Eid + EPk (Xid)”, and the return & backtrack onion is changed to “＾ Cid + CPk [＾ Bid + BPk [＾ Aid + APk (Aid),]”. ]].
[0177]
In the data packet 40h passed from the P2P onion node 430 to the P2P onion node 300, the destination onion is changed to “Xid”, and the return & backtrack onion is changed to “$ Eid + EPk [$ Cid + CPk [$ Bid + BPk [$ Aid + APk (Aid)]]. ]].
[0178]
In this way, the data packet can be delivered to the receiving peer via another anonymous route even if the packet transfer on the anonymous route selected first fails due to the backtracking process. Such backtrack processing is performed recursively. That is, when the transmission by the backtrack also fails, the backtrack processing of the data packet is performed based on still another anonymous route.
[0179]
Here, when transmission fails in all anonymous routes set in the destination onion of the data packet, the data packet is transferred by multicast. The presence / absence of an untransmitted anonymous route can be determined by the presence / absence of a return flag of the return & backtrack onion 45.
[0180]
For example, when the transmission of the data packet 40g from the P2P onion node 420 to the P2P onion node 430 has failed, the P2P onion node 420 determines whether the return of the data packet 40g and the return flag of the backtrack onion 45 are present. If the return flag is set, there is no other anonymous route. Therefore, the P2P onion node 420 determines that multicast transmission is necessary.
[0181]
FIG. 23 is a diagram illustrating a transmission path of a data packet in multicast. If the transmission of the data packet 40g fails in the P2P onion node 430, the data packet 40i is transmitted from the P2P onion node 420 to another P2P onion node 460 (node name “F”) connected at that time. If there is a path from the P2P onion node 460 to the P2P onion node 300, the data packet is transmitted to the P2P onion node 300. Even in this case, the anonymity of the sending peer and the receiving peer is maintained.
[0182]
As described above, the receiving peer can reply to the received message while maintaining the anonymity of the transmitting peer. Since the return route is held in the return & backtrack onion, the receiving peer can return to the transmitting peer by onion routing using the return onion (anonymous route information set with the return flag “＾”). The onion routing at the time of reply is the same as the transmission except that the reply P2P onion route has only one route. That is, when the routing using the P2P onion route fails, the reply message is reached by the P2P multicast function. Also in this case, anonymity is secured.
[0183]
[Example of application to anonymous bulletin board]
If the anonymous communication network as described above is applied to an electronic bulletin board, anonymous information exchange between an unspecified number of users can be performed safely.
[0184]
FIG. 24 is a diagram illustrating a configuration example of an anonymous communication network applied to an anonymous bulletin board. In the example of FIG. 24, a database (DB) 360 is connected to the P2P onion node 300 in the anonymous communication network 10, and a bulletin board system is constructed. This bulletin board system is a public DB that is open to the public. In this case, the public ID of the P2P onion node 300 is disclosed in a magazine or a web page on the Internet.
[0185]
As described above, in the anonymous bulletin board function, an anonymous bulletin board (public DB) is mounted on the P2P onion node 300 on the anonymous communication network 10 and information posted from another P2P onion node to the anonymous bulletin board (public DB) is used. I do.
[0186]
A P2P onion node using a bulletin board (public DB) mainly implements the following functions.
1. Post to an anonymous bulletin board (public DB).
2. Post data on an anonymous bulletin board (public DB) can be searched.
3. Reply to information posted on an anonymous bulletin board (public DB).
[0187]
The bulletin board (public DB) is implemented as an application that operates on one P2P onion node 300 on the anonymous communication network 10. Each P2P onion node has a function for notifying the bulletin board (public DB) node (P2P onion node 300) of a message for performing the above three functions via the anonymous communication network 10. The bulletin board (public DB) node (P2P onion node 300) has a function of storing posted data in response to a message notified via the anonymous communication network 10, searching for posted data, and returning a search result.
[0188]
The functions realized by the anonymous bulletin board are shown below.
1. It is not possible to detect who posted the message (post concealment function).
2. Automatically delete posted information after a specified time.
3. Unable to detect who made the search (searcher concealment function).
4. It is possible to make a reservation so that even if there is no post data to be searched for at the time of the search, notification is made when the target post data is posted later.
5. Search reservations are automatically canceled after the specified time has elapsed.
[0189]
Note that the DB 360 can be implemented using, for example, XSR (XML Service Registry). XSR is an object database technology owned by Fujitsu Prime Software Technology Co., Ltd. The functions of this software are as follows.
[0190]
UP function: a function to save an object.
An expiration date can be set for the storage period of the object. Expired objects are automatically deleted from the XSR.
[0191]
LOOKUP function: The object that the user is looking for can be searched.
It has a function to reserve a search.
RESPONSE function: Asynchronously notifies the user if there is information matching the reserved search.
[0192]
Also, in order to enhance the unlinkability between messages, the disposable management of the anonymous identifier of the peer node and the public key is performed as follows.
1. Generate an anonymous identifier using a secret key and a random number. Only one with the secret key can confirm that it is his own identifier with respect to the anonymous identifier.
2. Generate a temporary public / temporary private key pair. The temporary secret key is encrypted with the public key of the membership card, and added to the message as reply information together with the temporary public key. The responder encrypts the reply message with the temporary public key and replies. The returned encrypted data can be decrypted only by the user having the private key of the membership card.
3. To expose the anonymity of the anonymous identifier in an emergency, bring the anonymous identifier (including the random number used for generation) to the certificate authority in the above "Anonymous Communication Infrastructure Connection Authentication Function", and register all registered private keys. An anonymous identifier is generated using a random number included in the anonymous identifier in a round robin manner, and a matching secret key is specified.
[0193]
By installing the anonymous bulletin board having the above configuration on the anonymous communication network 10, anonymous message exchange becomes possible.
For example, the user can use the P2P onion node 100 to transmit the data packet 51 including the posting data to the P2P onion node 300 and register the posting data in the DB 360. As the posted data, for example, the data packet 52 including the search request is transmitted to the P2P onion node 300 using the P2P onion node 420, and the posted data stored in the DB 360 can be searched.
[0194]
The P2P onion node 300 searches the posted data in the DB 360 in response to the search request, and obtains a search result. Then, the P2P onion node 300 transmits the data packet 53 including the search result to the P2P onion node 420. As a result, the search result is passed to the P2P onion node 420.
[0195]
Note that the search result includes anonymous route information (return onion) from the bulletin board node (P2P onion node 300) to the poster's P2P onion node, a temporary public key for the poster's P2P onion node, and the like. This allows the P2P onion node that has output the search request to obtain anonymous route information to the poster's P2P onion node, and that a message addressed to the poster can be decrypted only by the poster's P2P onion node. Can be encrypted.
[0196]
FIG. 25 is a diagram illustrating an example of a data packet including post data. The data packet 51a generated by the P2P onion node 100 includes a message flag "normal", a destination (To) "public ID of the node" X ", a transmission source (From)" anonymous ID # 3 of the node "A", and a destination. Onion "Bid + BPk [Cid + CPk (Eid + EPk (Xid))]", return & backtrack onion "@ Aid + APk (Aid)", payload "XPk [message header, ATPk, APk (ATSk), message data]" are set. In this example, for simplicity of description, it is assumed that only one piece of anonymous route information is set in the destination onion.
[0197]
When such a data packet 51b arrives at the P2P onion node 300 without any transmission failure during transmission, in the data packet 51b at that time, the destination onion is changed to "Xid", and the return & backtrack onion is changed. Is changed to "Eid + EPk [Cid + CPk [Bid + BPk [@ Aid + APk (Aid)]]]".
[0198]
The P2P onion node 300 receiving such a data packet 51a stores predetermined information in the DB 360.
FIG. 26 is a diagram illustrating an example of a data structure in the DB. In the DB 360, items of anonymous ID, return onion, reply encryption temporary key information, and message data are registered in association with each other. For example, “Anonymous ID # 3 of node“ A ”is registered in the item of anonymous ID based on data packet 51 b. In the return onion,“ Eid + EPk [Cid + CPk [Bid + BPk [＾ Aid + APk (Aid)] ” ]]] ”Is registered. In the reply encryption temporary key information,“ ATPk, APk (ATSk) ”is registered. In the message data item,“ post request, upload date and time, actual data ” And other information are registered.
[0199]
Thereafter, the data packet 52 including the search request is transmitted from the P2P onion node 420 to the P2P onion node 300.
FIG. 27 is a diagram illustrating an example of a data packet including a search request. The data packet 52a generated by the P2P onion node 420 includes a message flag "normal", a destination (To) "public ID of the node" X ", a transmission source (From)" anonymous ID # 4 of the node "D", and a destination. Onion "Eid + EPk (Xid)", return & backtrack onion "@ Did + DPk (Did)", payload "XPk [message header, DTPk, DPk (DTSk), message data]" are set.
[0200]
When such a data packet 52a arrives at the P2P onion node 300 without any transmission failure during transmission, the destination onion is changed to "Xid" in the data packet 52b at that time, and the return & backtrack onion is changed. Is changed to “Eid + EPk [＾ Did + DPk (Did)]”. Here, the data in the payload is “message header, DPk (DTSk), DTPk, message data (search request, up date and time,...)”.
[0201]
The P2P onion node 300 that has received the data packet 52b searches the DB 360 according to the instruction of the search request (indicating a search keyword or the like). Here, it is assumed that the posted data posted by the data packet 51b is obtained as a search result. Then, the P2P onion node 300 transmits the data packet 53 including the search result to the P2P onion node 420.
[0202]
FIG. 28 is a diagram illustrating an example of a data packet including a search result. The data packet 53a generated by the P2P onion node 300 includes a message flag "request response", a destination (To) "anonymous ID # 4 of the node" D ", and a transmission source (From)" public ID of the node "X"". , Destination onion "Eid + EPk [@ Did + DPk (Did)]", return & backtrack onion "@ Xid + XPk (Xid)", and payload "XPk [message header, DTPk, DPk (DTSk), message data]". .
[0203]
When such a data packet 53a arrives at the P2P onion node 300 without any transmission failure during the transmission, in the data packet 53b at that time, the destination onion is changed to "@ Did + DPk (Did)" and the process returns. & The backtrack onion is changed to “Eid + EPk [＾ Xid + XPk (Xid)]”. Here, the data in the payload are “message header, DPk (DTSk), DTPk [node“ A ”anonymous ID # 3, message data (search request, up date and time,...)”, Eid + EPk [Cid + CPk [Bid + BPk [＾ Aid + APk] (Aid)]]]] ”. DPk (DTSk) is obtained by encrypting the temporary decryption key of the P2P onion node 420 with a fixed public key. The message data is a search result. In this example, the message data is actual data included in the data packet 51a. “Eid + EPk [Cid + CPk [Bid + BPk [＾ Aid + APk (Aid)]]]” is a return onion from the P2P onion node 300 to the P2P onion node 100. Also, the node “A” anonymous ID # 3, message data, and Eid + EPk [Cid + CPk [Bid + BPk [＋ Aid + APk (Aid)]] (return onion)) are encrypted with the temporary public key (DTPk) of the P2P onion node 420. I have.
[0204]
The search result can be referenced by decrypting the encrypted data in the payload with the temporary secret key (DTSk) of the P2P onion node 420. The user using the P2P onion node 420 confirms the contents of the posted data by referring to the search result. When responding to the posted content, the user inputs a reply message to the P2P onion node 420, and then inputs a reply instruction.
[0205]
Then, P2P onion node 420 transmits a data packet including a reply message to the posted data to P2P onion node 430.
FIG. 29 is a diagram illustrating an example of a data packet including a reply message. The data packet 61 generated by the P2P onion node 420 includes a message flag “reply”, a destination (To) “anonymous ID # 3 of the node“ A ”, a transmission source“ anonymous ID 5 ”of the node“ D ”, and a destination onion” Eid + EPk [@ Xid + XPk (Xid)], Eid + EPk [Cid + CPk [Bid + BPk [@ Aid + APk (Aid)]]] ", return & backtrack onion" @ Did + DPk (Did) ", payload" message header, DTPk, DPk (DPk). ATPk (reply message), APk (ATSk) "are set.
[0206]
Here, the destination onion is a connection of a return onion from the P2P onion node 420 to the P2P onion node 300 and a return onion from the P2P onion node 300 to the P2P onion node 100. Each P2P onion node serving as a relay peer processes in order from the previously connected return onion. Thereby, the anonymous route information from the P2P onion node 420 to the P2P onion node 100 is set in the destination onion.
[0207]
“DTPk, DPk (DTSk)” in the payload is temporary key information for return encryption, and is used for returning from the P2P onion node 100 to the P2P onion node 420. "ATPk (reply message)" indicates that the reply message addressed to the P2P onion node 100 is encrypted with the temporary public key of the P2P onion node 100.
[0208]
FIG. 30 is a diagram illustrating a transmission path of a data packet including a reply content. The data packet 61 transmitted from the P2P onion node 420 to the P2P onion node 430 is relayed while receiving the update of the destination onion and the return & backtrack onion. The P2P onion node 430 sends the data packet 62 to the P2P onion node 300. The P2P onion node 300 transmits the data packet 63 to the P2P onion node 430. The P2P onion node 430 sends the data packet 64 to the P2P onion node 410. The P2P onion node 410 transmits the data packet 65 to the P2P onion node 200. The P2P onion node 200 transmits the data packet 66 to the P2P onion node 100.
[0209]
In this way, anonymous communication between users via the bulletin board is possible. Moreover, by using a bulletin board to which the present invention is applied, anonymous information exchange can be performed between an unspecified number of users. Furthermore, since the node ID and the temporary public key are disposable and different values are used for each predetermined procedure, the identity of the poster is hidden for a plurality of messages posted to the bulletin board by the same poster. be able to.
[0210]
By using such a system, even if personal information is exchanged, an individual corresponding to the information can be hidden from a malicious third party. Therefore, such an anonymous bulletin board technology can be applied to preventive medicine and health care services (HCS) utilizing network technology. In order to realize the HCS business, security for data that needs to be kept secret, such as the physical condition and physiological data of the beneficiary, is a very important factor. Therefore, if the anonymous bulletin board is applied to the HCS, the physiological data of the user can be registered in the P2P onion node 300 as anonymous using the P2P onion node 100. Then, the doctor using the other P2P onion node 420 refers to the registered physiological data, and can transmit lifestyle advice and the like to the user anonymously.
[0211]
As described above, according to the embodiment of the present invention, before data transmission, a route to a transmission partner is searched, and information (public key of each node) for performing anonymous communication via the route is collected. I do. Therefore, anonymous communication is possible even when the network configuration changes dynamically. As a result, when transmitting and receiving data in an unstable network system such as a P2P network system, the transmission path can be dynamically searched and the anonymity of the sender and receiver can be protected.
[0212]
In addition, since the data packet used for anonymous communication contains information on an anonymous route different from the anonymous route being transferred, if transmission fails, data is transmitted via another anonymous route. Can be done. This increases the reliability of data transmission.
[0213]
Also, when data transmission via all anonymous routes included in a data packet fails, data transmission via another route is attempted by multicast. Therefore, if there is another route that does not exist at the time of route search but exists at the time of data transmission, it becomes possible to transmit a packet to the destination P2P onion node via that route.
[0214]
Further, in order to enhance anonymity in communication, the public key notified to other P2P onion nodes is used as a temporary public key, and the temporary public key is used for each predetermined communication (for example, transmission of a request and response to the request). Due to the re-creation, even if the contents of the public key are monitored, it is not possible to identify whether or not a plurality of packets have been output from the same P2P onion node.
[0215]
Furthermore, it is determined whether or not the packet is addressed to itself by the anonymous ID, and the anonymous ID is recreated for each predetermined communication (for example, transmission of a request and response to the request). P2P onion nodes cannot be identified.
[0216]
In the above description, the temporary secret key of the transmission peer encrypted with the fixed public key is included in the reply encryption temporary key information, but this is a combination of the temporary public key and the temporary secret key. Is a process for not managing by the transmission peer.
[0219]
Further, the above processing functions can be realized by a computer. In this case, a program describing the processing contents of the functions that the P2P onion node should have is provided. By executing the program on a computer, the above processing functions are realized on the computer. The program describing the processing content can be recorded on a computer-readable recording medium. Computer-readable recording media include magnetic recording devices, optical disks, magneto-optical recording media, and semiconductor memories. The magnetic recording device includes a hard disk device (HDD), a flexible disk (FD), a magnetic tape, and the like. Examples of the optical disc include a DVD (Digital Versatile Disc), a DVD-RAM (Random Access Memory), a CD-ROM (Compact Disc Read Only Memory), and a CD-R (Recordable) / RW (ReWritable). Magneto-optical recording media include MO (Magneto-Optical disc).
[0218]
When distributing the program, for example, portable recording media such as DVDs and CD-ROMs on which the program is recorded are sold. Alternatively, the program may be stored in a storage device of a server computer, and the program may be transferred from the server computer to another computer via a network.
[0219]
The computer that executes the program stores, for example, the program recorded on the portable recording medium or the program transferred from the server computer in its own storage device. Then, the computer reads the program from its own storage device and executes processing according to the program. The computer can also read the program directly from the portable recording medium and execute processing according to the program. Further, the computer may execute the processing according to the received program each time the program is transferred from the server computer.
[0220]
(Supplementary Note 1) In an anonymous route search request method for performing a transmission route search process to a destination with a computer in a state in which a source is hidden,
Upon receiving a route search request specifying the destination with the destination identifier, encrypting its own node identifier, which is its own identification information, in a format that can be decrypted only by itself and returning it as anonymous route information for reply,
An arbitrarily generated anonymous identifier, the destination identifier, the reply anonymous route information, and a route search packet including a source public key for return data encryption,
Transmitting the route search packet by broadcast,
An anonymous route search request method, characterized in that:
[0221]
(Supplementary note 2) An anonymous route search request according to Supplementary note 1, wherein a set of a fixed public key and a fixed secret key is prepared in advance, and the own node identifier is encrypted using the fixed public key. Method.
[0222]
(Supplementary Note 3) Each time the route search request is received, a pair of a temporary public key and a temporary secret key is generated, and the generated temporary public key is used as the transmission source public key for encrypting reply data. 5. The method of requesting an anonymous route search according to claim 1, wherein
[0223]
(Supplementary note 4) The anonymous statement according to supplementary note 3, wherein a set of a fixed public key and a fixed secret key is prepared in advance, and the temporary secret key is encrypted with the fixed public key and included in the route search packet. Route search request method.
[0224]
(Supplementary Note 5) A route notification packet including, as a response to the route search packet, route information obtained by encrypting a set of a node identifier and a public key of each node on the route from the computer to the destination with the source public key. Receiving the root information, decrypts the route information with a source private key corresponding to the source public key,
Storing a set of the node identifier and the public key obtained by decryption in a recording device,
3. The method of requesting an anonymous route search according to claim 1, wherein
[0225]
(Supplementary Note 6) In an anonymous route search request relay method for relaying a transmission route search request in which a transmission source is hidden by a computer,
Anonymous identifier of the transmission source, destination identifier specifying a search partner, anonymous return route information in which a transmission route from the transmission source to the computer is encrypted, and neighbor information which is identification information of an adjacent node on the transmission route Node identifier, and upon receiving a route search packet including the source public key for return data encryption, encrypts the reply anonymous route information and the adjacent node identifier in a format that only one can decrypt,
Add own node identifier which is its own identification information to the route search packet,
Transmitting the route search packet by broadcast,
An anonymous route search request relay method, characterized in that:
[0226]
(Supplementary note 7) The anonymous route search request relay method according to supplementary note 6, wherein the broadcast transmission is performed on a transmission path other than the transmission path to which the route search packet is input.
[0227]
(Supplementary Note 8) In an anonymous data relay method for relaying anonymous communication via an anonymous route by a computer,
The next node identifier indicating the next transmission destination on the anonymous route and the anonymous route information from the next transmission destination to the destination are the destination anonymous route information encrypted with the public key of the computer. Upon receiving a data packet including return anonymous route information indicating a transmission route and an adjacent node identifier which is identification information of an adjacent node on the transmission route, decrypts the destination anonymous route information with a secret key corresponding to the public key. And, while determining the next node identifier, set the decrypted data in the data packet as the new destination anonymous route information,
The return anonymous route information and the adjacent node identifier are encrypted with the public key to obtain new return anonymous route information,
Adding the own node identifier of the computer to the data packet,
Transmitting the data packet to a node indicated by the next node identifier;
A method for relaying anonymous data, comprising:
[0228]
(Supplementary Note 9) When a plurality of sets of the node identifier of the adjacent node and the anonymous route information are obtained by decoding the destination anonymous route information, one set is set as the new destination route information and the other set is backtracked. The anonymous route information is encrypted with the public key together with the return anonymous route information, and the encrypted data is added with the own node identifier of the computer to obtain new return anonymous route information. 8. The method for relaying anonymous data according to item 8.
[0229]
(Supplementary Note 10) When the transmission of the data packet fails, the destination anonymous route information of the data packet is replaced with the return anonymous route information at the time of receiving the data packet, and the data is transmitted to the node that transmitted the data packet. The anonymous data relay method according to claim 8, wherein the method returns a packet.
[0230]
(Supplementary Note 11) If the backtrack anonymous route information is included when the destination anonymous route information of the returned data packet is decoded, the node identifier indicated by the backtrack anonymous route information is replaced with the next node identifier. 11. The method for relaying anonymous data according to supplementary note 10, wherein
[0231]
(Supplementary Note 12) When the transmission of the data packet fails, if there is no other anonymous route information in either the destination anonymous route information or the return anonymous route information, each node adjacent to the computer may: The anonymous data relay method according to claim 8, wherein the data packet is transmitted by multicast.
[0232]
(Supplementary Note 13) In a method of responding to an anonymous route search request in which a destination computer responds to a transmission route search request in which a transmission source is hidden,
The source anonymous identifier, a destination identifier indicating a packet addressed to the computer, a reply anonymous route information obtained by encrypting a transmission route from the source to the computer, and identification information of an adjacent node on the transmission route. Upon receiving a route search packet including a certain adjacent node identifier and a transmission source public key for return data encryption, the own node identifier which is its own identification information, and the receiving node public key for encrypting the information addressed to the own node. Is encrypted with the source public key to obtain root information,
The route notification destination is specified by the anonymous identifier, the reply anonymous route information, the route information, and generating a route notification packet including the source public key,
Transmitting the route notification packet to the node indicated by the adjacent node identifier,
A method of responding to an anonymous route search request characterized by the following.
[0233]
(Supplementary Note 14) In an anonymous route search request program for searching a transmission route to a destination while hiding a transmission source,
On the computer,
Upon receiving a route search request specifying the destination with the destination identifier, encrypting its own node identifier, which is its own identification information, in a format that can be decrypted only by itself and returning it as anonymous route information for reply,
An arbitrarily generated anonymous identifier, the destination identifier, the reply anonymous route information, and a route search packet including a source public key for return data encryption,
Transmitting the route search packet by broadcast,
An anonymous route search request program for executing a process.
[0234]
(Supplementary Note 15) In an anonymous route search request relay program for relaying a transmission route search request whose source is hidden,
On the computer,
Anonymous identifier of the transmission source, destination identifier specifying a search partner, anonymous return route information in which a transmission route from the transmission source to the computer is encrypted, and neighbor information which is identification information of an adjacent node on the transmission route Node identifier, and upon receiving a route search packet including the source public key for return data encryption, encrypts the reply anonymous route information and the adjacent node identifier in a format that only one can decrypt,
Add own node identifier which is its own identification information to the route search packet,
Transmitting the route search packet by broadcast,
An anonymous route search request relay program for executing a process.
[0235]
(Supplementary Note 16) In an anonymous data relay program for relaying anonymous communication via an anonymous route,
On the computer,
The next node identifier indicating the next transmission destination on the anonymous route and the anonymous route information from the next transmission destination to the destination are the destination anonymous route information encrypted with the public key of the computer. Upon receiving a data packet including return anonymous route information indicating a transmission route and an adjacent node identifier which is identification information of an adjacent node on the transmission route, decrypts the destination anonymous route information with a secret key corresponding to the public key. And, while determining the next node identifier, set the decrypted data in the data packet as the new destination anonymous route information,
The return anonymous route information and the adjacent node identifier are encrypted with the public key to obtain new return anonymous route information,
Adding the own node identifier of the computer to the data packet,
Transmitting the data packet to a node indicated by the next node identifier;
An anonymous data relay program for executing processing.
[0236]
(Supplementary Note 17) In an anonymous route search request response program for making a destination computer respond to a transmission route search request whose source is hidden,
On the computer,
The source anonymous identifier, a destination identifier indicating a packet addressed to the computer, a reply anonymous route information obtained by encrypting a transmission route from the source to the computer, and identification information of an adjacent node on the transmission route. Upon receiving a route search packet including a certain adjacent node identifier and a transmission source public key for return data encryption, the own node identifier which is its own identification information, and the receiving node public key for encrypting the information addressed to the own node. Is encrypted with the source public key to obtain root information,
The route notification destination is specified by the anonymous identifier, the reply anonymous route information, the route information, and generating a route notification packet including the source public key,
Transmitting the route notification packet to the node indicated by the adjacent node identifier,
An anonymous route search request response program for executing a process.
[0237]
(Supplementary Note 18) In an anonymous route search request device that searches for a transmission route to a destination while hiding a source,
Upon receiving a route search request specifying the destination by the destination identifier, generating the reply anonymous route information for generating the reply anonymous route information by encrypting the own node identifier which is its own identification information in a format which only the user can decrypt. Means,
Route search packet generating means for generating a route search packet including an arbitrarily generated anonymous identifier, the destination identifier, the reply anonymous route information, and a source public key for encrypting reply data,
Transmitting means for transmitting the route search packet by broadcast,
An anonymous route search request device comprising:
[0238]
(Supplementary Note 19) In an anonymous route search request relay device for relaying a transmission route search request whose source is hidden,
Anonymous identifier of the transmission source, destination identifier designating the search partner, anonymous return route information in which the transmission route from the transmission source to the own device is encrypted, and neighbor information which is identification information of an adjacent node on the transmission route Upon receiving a route search packet including a node identifier and a source public key for encrypting return data, encrypting means for encrypting the return anonymous route information and the adjacent node identifier in a format that can be decrypted only by the user. When,
Own node identifier adding means for adding own node identifier which is own identification information to the route search packet;
Transmitting means for transmitting the route search packet by broadcast,
An anonymous route search request relay device comprising:
[0239]
(Supplementary Note 20) In an anonymous route search request response device for responding to a transmission route search request in which a transmission source is hidden,
The source anonymous identifier, a destination identifier indicating a packet addressed to the own device, a reply anonymous route information in which a transmission route from the source to the own device is encrypted, and identification information of an adjacent node on the transmission route. Upon receiving a route search packet including a certain adjacent node identifier and a transmission source public key for return data encryption, the own node identifier which is its own identification information, and the receiving node public key for encrypting the information addressed to the own node. Route information generating means for generating route information by encrypting with the source public key,
Route notification destination specified by the anonymous identifier, the return anonymous route information, the route information, and a route notification packet generating means for generating a route notification packet including the source public key,
Transmitting means for transmitting the route notification packet to a node indicated by the adjacent node identifier,
An anonymous route search request responding device characterized by having:
[0240]
(Supplementary Note 21) In an electronic bulletin board providing apparatus for performing anonymous message exchange on a network,
A message to be posted on a bulletin board, first return anonymous route information indicating a first transmission route tracing from a sender of the poster, and a first adjacent node identifier which is identification information of an adjacent node on the first transmission route. Registration means for registering the contents of the data packet in a database upon receipt of the post data packet addressed to the user,
A search condition for the message, second return anonymous route information indicating a second transmission route tracing from a sender of the searcher, a second adjacent node identifier which is identification information of an adjacent node on the second transmission route, and When receiving a search data packet addressed to itself including a transmission source public key for return data encryption, a search means for searching the database according to the search condition,
Encrypting means for encrypting the message detected by the search means, the first return anonymous route information, and the first adjacent node identifier with the source public key;
Packet generating means for generating a response data packet including the encrypted data and the second return route information;
Transmitting means for transmitting the response data packet to a node indicated by the second adjacent node identifier;
An electronic bulletin board providing device, comprising:
[0241]
(Supplementary Note 22) In a message posting method for posting a message to an electronic bulletin board for anonymous message exchange on a network by a computer,
Upon receiving the message posting request, encrypting the own node identifier of the computer in a format that only the user can decrypt, adding the own node identifier to the encrypted data as return route information,
Including destination anonymous route information defining a transmission route for performing anonymous communication with the server provided with the electronic bulletin board, the return anonymous route information, a source public key for encrypting return data, and the message Generate data packets,
Transmitting the data packet to an adjacent node on the route indicated by the destination anonymous route information;
A message posting method characterized in that:
[0242]
(Supplementary Note 23) In a posted message search method for searching a message posted on an electronic bulletin board for anonymous message exchange on a network by a computer,
Upon receiving the search condition of the message, encrypts the own node identifier of the computer in a format that only the user can decrypt, adds the own node identifier to the encrypted data as return route information,
The destination anonymous route information in which a transmission route for performing anonymous communication with the server provided with the electronic bulletin board is defined, the return anonymous route information, a source public key for return data encryption, and the search condition. Generate a data packet containing
Transmitting the data packet to an adjacent node on the route indicated by the destination anonymous route information;
Post message search method characterized by the following.
[0243]
(Supplementary Note 24) In an electronic bulletin board providing program for providing an electronic bulletin board for exchanging anonymous messages on a network by a computer,
To the computer,
A message posted on a bulletin board, first return anonymous route information indicating a first transmission route tracing from a sender of a contributor, and a first adjacent node identifier which is identification information of an adjacent node on the first transmission route. When receiving a post data packet addressed to itself, including the content of the data packet is registered in the database,
A search condition for the message, second return anonymous route information indicating a second transmission route tracing from a sender of the searcher, a second adjacent node identifier which is identification information of an adjacent node on the second transmission route, and Upon receiving a search data packet addressed to itself including a source public key for return data encryption, searching the database using the search condition,
Encrypting the message detected by the search means, the first return anonymous route information, and the first adjacent node identifier with the source public key;
Generating a response data packet including the encrypted data and the second return route information;
Transmitting the response data packet to a node indicated by the second adjacent node identifier;
An electronic bulletin board providing program for executing a process.
[0244]
【The invention's effect】
As described above, in the present invention, a route search packet is transmitted by multicast, and each node on the transmission route adds its own node identifier to the anonymous route information for reply and encrypts the entirety. Was transferred to the node. Therefore, the content of the reply anonymous route information when the route search packet reaches the destination node indicates the anonymous route. Since the reply anonymous route information is encrypted each time it passes through each node, individual nodes cannot recognize the entire route, and the sender's anonymity is maintained.
[0245]
Further, in the present invention, when a search is performed on a message posted on an electronic bulletin board via an anonymous route, the message is added to the anonymous route information up to the sender of the poster and transmitted to the searcher. Therefore, the searcher can respond to the anonymous poster via an anonymous route.
[Brief description of the drawings]
FIG. 1 is a conceptual diagram of the invention applied to an embodiment.
FIG. 2 is a conceptual diagram of an anonymous communication network.
FIG. 3 is a diagram illustrating a hardware configuration example of a P2P onion node used in the embodiment of the present invention.
FIG. 4 is a block diagram illustrating a schematic functional configuration of a P2P onion node;
FIG. 5 is a block diagram showing a functional configuration of a P2P onion node.
FIG. 6 illustrates an anonymous communication infrastructure connection authentication function.
FIG. 7 illustrates an anonymous route discovery function.
FIG. 8 is a diagram illustrating an example of a data structure of a route search packet.
FIG. 9 is a diagram illustrating an example of a data structure of a route notification packet.
FIG. 10 is a sequence diagram illustrating a processing procedure of an anonymous route discovery function.
FIG. 11 is a diagram showing a transmission route of a route search packet.
FIG. 12 is a diagram showing a state transition state of a route search packet.
FIG. 13 is a diagram showing a transmission route of a route notification packet.
FIG. 14 is a diagram illustrating a state transition state of a route notification packet.
FIG. 15 is a diagram illustrating an example of a data structure in an anonymous route information holding unit.
FIG. 16 is a conceptual diagram showing an anonymous communication function.
FIG. 17 is a diagram illustrating an example of a data structure of a data packet.
FIG. 18 is a sequence diagram illustrating a processing procedure of an anonymous communication function.
FIG. 19 is a diagram illustrating a transmission path of a data packet.
FIG. 20 is a diagram showing a state transition state of a data packet.
FIG. 21 is a diagram illustrating a transmission path of a data packet in backtrack processing.
FIG. 22 is a diagram illustrating a state transition state of a data packet during backtrack transfer.
FIG. 23 is a diagram illustrating a transmission path of a data packet in multicast.
FIG. 24 is a diagram illustrating a configuration example of an anonymous communication network applied to an anonymous bulletin board;
FIG. 25 is a diagram illustrating an example of a data packet including post data.
FIG. 26 is a diagram illustrating an example of a data structure in a DB.
FIG. 27 is a diagram illustrating an example of a data packet including a search request.
FIG. 28 is a diagram illustrating an example of a data packet including a search result.
FIG. 29 is a diagram illustrating an example of a data packet including a reply message.
FIG. 30 is a diagram illustrating a transmission path of a data packet including reply contents.
[Explanation of symbols]
1 sending node
2 Relay node
3 receiving node
10 Anonymous communication network
100, 200, 300, 410, 420, 430, 440, 450 P2P onion nodes
110,210,310 P2P onion proxy
120,220,320 P2P onion router

Claims (5)

An anonymous route search request method for executing a transmission route search process to a destination with a computer in a state in which a source is hidden,
Upon receiving a route search request specifying the destination with the destination identifier, encrypting its own node identifier, which is its own identification information, in a format that can be decrypted only by itself and returning it as anonymous route information for reply,
An arbitrarily generated anonymous identifier, the destination identifier, the reply anonymous route information, and a route search packet including a source public key for return data encryption,
Transmitting the route search packet by broadcast,
An anonymous route search request method, characterized in that: An anonymous route search request relay method for relaying a transmission path search request in which a transmission source is hidden by a computer,
Anonymous identifier of the transmission source, destination identifier specifying a search partner, anonymous return route information in which a transmission route from the transmission source to the computer is encrypted, and neighbor information which is identification information of an adjacent node on the transmission route Node identifier, and upon receiving a route search packet including the source public key for return data encryption, encrypts the reply anonymous route information and the adjacent node identifier in a format that only one can decrypt,
Add own node identifier which is its own identification information to the route search packet,
Transmitting the route search packet by broadcast,
An anonymous route search request relay method, characterized in that: An anonymous data relay method for relaying anonymous communication via an anonymous route by a computer,
The next node identifier indicating the next destination on the anonymous route and the anonymous route information from the next destination to the destination are destination anonymous route information encrypted with the public key of the computer, Upon receiving a data packet including return anonymous route information indicating a transmission route and an adjacent node identifier which is identification information of an adjacent node on the transmission route, decrypts the destination anonymous route information with a secret key corresponding to the public key. Determining the next node identifier, setting the decrypted data in the data packet as new destination anonymous route information, encrypting the return anonymous route information and the adjacent node identifier with the public key. The new return anonymous route information,
Adding the own node identifier of the computer to the data packet,
Transmitting the data packet to a node indicated by the next node identifier;
A method for relaying anonymous data, comprising: An anonymous route search request response method for responding at a destination computer to a transmission route search request whose source is hidden,
The source anonymous identifier, a destination identifier indicating a packet addressed to the computer, a reply anonymous route information obtained by encrypting a transmission route from the source to the computer, and identification information of an adjacent node on the transmission route. Upon receiving a route search packet including a certain adjacent node identifier and a transmission source public key for return data encryption, the own node identifier which is its own identification information, and the receiving node public key for encrypting the information addressed to the own node. Is encrypted with the source public key to obtain root information,
The route notification destination is specified by the anonymous identifier, the reply anonymous route information, the route information, and generating a route notification packet including the source public key,
Transmitting the route notification packet to the node indicated by the adjacent node identifier,
A method of responding to an anonymous route search request characterized by the following. In an electronic bulletin board providing device for performing anonymous message exchange on a network,
A message to be posted on a bulletin board, first return anonymous route information indicating a first transmission route tracing from a sender of the poster, and a first adjacent node identifier which is identification information of an adjacent node on the first transmission route. Registration means for registering the contents of the data packet in a database upon receipt of the post data packet addressed to the user,
A search condition for the message, second return anonymous route information indicating a second transmission route tracing from a sender of the searcher, a second adjacent node identifier which is identification information of an adjacent node on the second transmission route, and When receiving a search data packet addressed to itself including a transmission source public key for return data encryption, a search means for searching the database according to the search condition,
Encrypting means for encrypting the message detected by the search means, the first return anonymous route information, and the first adjacent node identifier with the source public key;
Packet generating means for generating a response data packet including the encrypted data and the second return route information;
Transmitting means for transmitting the response data packet to a node indicated by the second adjacent node identifier;
An electronic bulletin board providing device, comprising:

Images