Yodel: strong metadata security for voice calls

Author(s)

Lazar, David; Gilad, Yossi; Zeldovich, Nickolai

Abstract

© 2019 David Lazar, Yossi Gilad, Nickolai Zeldovich. Yodel is the first system for voice calls that hides metadata (e.g., who is communicating with whom) from a powerful adversary that controls the network and compromises servers. Voice calls require sub-second message latency, but low latency has been difficult to achieve in prior work where processing each message requires an expensive public key operation at each hop in the network. Yodel avoids this expense with the idea of self-healing circuits, reusable paths through a mix network that use only fast symmetric cryptography. Once created, these circuits are resilient to passive and active attacks from global adversaries. Creating and connecting to these circuits without leaking metadata is another challenge that Yodel addresses with the idea of guarded circuit exchange, where each user creates a backup circuit in case an attacker tampers with their traffic. We evaluate Yodel across the internet and it achieves acceptable voice quality with 990 ms of latency for 5 million simulated users.

Date issued

2019

URI

https://hdl.handle.net/1721.1/137800

Department

Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory

Journal

SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles

Publisher

Association for Computing Machinery (ACM)

Citation

Lazar, David, Gilad, Yossi and Zeldovich, Nickolai. 2019. "Yodel: strong metadata security for voice calls." SOSP 2019 - Proceedings of the 27th ACM Symposium on Operating Systems Principles.

Version: Author's final manuscript