Total Pageviews

Friday, 24 June 2016


Provably Anonymous Overlay 

Dissent - Dining-Cryptographers, Shuffled-Send Network

This library will eventually provide a framework for constructing provably
anonymous overlays with the following key features.

The library requires Qt and CryptoPP and can be built using qmake on (qmake

While previous versions of the code focused on linkable libraries, because this
has unnecessary complexities, we plan to only support unified binaries.

Directory Structure
- ext - external sources required to build the code
- src - source code for the development branch
- src/Anonymous - Anonymity protocols
- src/Applications - User interfaces modules
- src/Connections - Message plane abstraction
- src/Crypto - Cryptography interface
- src/Identity - Containers for user information
- src/Identity/Authentication - Authentication protocols
- src/Messaging - Interfaces for abstracting communication
- src/Overlay - Manages connections
- src/Tests - Test code for classes in other folders
- src/Transports - Low level Networking interface
- src/Tunnel - SOCKS proxy
- src/Utils - Miscellaneous tools
- src/Web - Web server 
- src/Web/Services - Web services
- legacy/libdissent - original, unmodified C++ version
- legacy/py - original, unmodified Python version

Build the command-line (Application):

The default configuration will create a local overlay with 3 servers and 20
clients, to use it execute:
cd conf/local && ln -s ../../dissent . && ./

This will launch a command-line interface, where commands can be typed.
(Note: by default logging is enabled, the above redirects it to /dev/null)

Type help to print out the commands.

Dissent also supports command-line flags.  Type:
With no parameters or with --help to get a list of optional parameters.

Command Line Network Use
Inspect conf/slave_tcp.conf and conf/master_tcp.conf

Nodes using conf/master_tcp.conf are bootstrap peers
Nodes using conf/slave_tcp.conf should have bootstrap peers end points in
their remote_peers list

Binding to will result in the first non-loop backdevice IP address
being used in exchanging IP address information.

After changing the configuration files and distributing the application,
begin by turning on the bootstrap peers first and then the client peers.
Afterward interaction is the same as discussed in the "Using" section.

Web Server Use
See WEB_USE in the top level directory (same as the README)

Proxy Server Use
Inspect conf/tunnel-entry.conf and conf/tunnel-exit.conf

Dissent has a built-in SOCKS 5 server for tunneling TCP traffic through a 
Dissent session. SOCKS tunneling requires two special nodes: an entry node and 
an exit node. The entry node runs the SOCKS server and inserts SOCKS traffic 
into a Dissent session. The exit node receives SOCKS traffic from a Dissent 
session and forwards it to its destination.

To enable a SOCKS entry node, add these lines to your .conf file:
  entry_tunnel = true
  entry_tunnel_url = "tcp://socks_server_ip:port"
If the socks_server_ip is, then the SOCKS server will listen on any 

The SOCKS server handles only TCP traffic, but it can resolve hostname-type

To enable a SOCKS exit node, add this line to your .conf file:
  exit_tunnel = true

This suite contains many tests using googletest[1], use qmake on
(qmake && make && ./test) to generate an appropriate makefile, which
will create a binary to test the code.

googletest was chosen because testing system code with QtTest would be quite

1 -

Key generation
Dissent supports BER decoding and writes in DER encoding[1], this apparently
provides the best interoperability.  To create public and private keys, we have
provided a tool called keygen (qmake && make && ./keygen), that can
create public / private key pairs and save them as a hash of the public key.
This hash can then be used as the Id of the node in Dissent.

1 -

Logging and Debugging Output
Logging outputs are compiled in by default but can be disabled by uncommenting
the following lines in and

Logging can be manipulated by using the Dissent::Utils::Logging class.  For the
ConsoleApp this is done by using the Settings file (conf).

To send logging output to standard error use log = "stderr".
To send logging output to standard output use log = "stdout".
To send logging output to a file use log = "filename".
To disable logging use log = "" or exclude log altogether.

Dedis -- Research group at Yale producing this software
Dissent -- Overview of the protocol


More specifically, these are requirements that should be followed prior to
asking for a code review / pull.  A code review / pull in this sense refers to
the submission of a pull request not an academic discussion on design choices.

API expectations:
- Doxygen with comments
- Follows existing patterns in the code or accompanies patches that improve
  those interfaces

- Minimizes dependencies, if A can work without knowing about B, A should not
  know about B, make a C that knows about both to handle interoperation
- Emphasize Qt features while minimizing additional dependencies on external
- Avoid blocking calls.