JonDo - Anonymity Software

JonDo - Anonymity Software

JonDo (was Java Anonymous Proxy) is a free, open-source and highly portable (Java-based) client software for accessing the JonDonym services. Its primary use is the anonymisation of web site requests against web site operators, internet providers and the anonymisation service Operators. All requests of the web browser have to be processed by the JonDo program instead of accessing the internet directly. JonDo encrypts the data and sends it to the first Mix of a Mix Cascade. The first Mix then mixes the data with that of other users and sends it to the second mix station which passes it on to the third mix station which decrypts and sends the data through a cache proxy to the internet.

Each mix carries out cryptographic operations on the message so that the JonDo-encrypted data is only readable after having passed through the proper mixes in the proper order. This ensures that an eavesdropper either only receives unreadable (encrypted) data or can no longer determine the sender. In order for it to work correctly, only one mix in the cascade needs be trusted not to inform the eavesdropper about the method of message mixing. The more users that use the cascade, the harder it is for an observer to distinguish single users.

Data retention resistance – By the distribution on different, independent operator organisations and countries, the JonDonym service is secure against data retention. Even if single operators have to store data, this does not create an “overall picture” needed to uncover the identity of users. Thus, JonDonym provides maximum protection against operators and third parties.

Moreover, the system provides so-called forwarding functionality. Users can connect to the service even if it is blocked by their provider. This is often the case in countries that are known for heavy censorship. Unblocked users of the service (Forwarding servers) may voluntarily forward other JonDonauts (Forwarding clients) to the Mix Cascades.

Current Available Version: Version 00.15.005:

• JonDo now integrates Bitcoin as additional payment method for the JonDonym Premium services: For every new payment, a new random Bitcoin address is generated. This hides against third parties for what a customer pays. Additionally, all data about the payment proccess are deleted after completion in order to fulfill even the highest privacy requirements. But of course, even if the identity of a buyer was known, neither JonDos nor the JonDonym operators could see what he/she does in the JonDonym system.
• Moreover, a stability protection against connection manipulations has been developed: In some countries, especially those in the middle east, HTTPS/SSL connections get manipulated by the resprective providers. Using a man-in-the-middle-attack, they aim to annihilate the encryption of web connections. Apparently, this is especially done on standard web ports like 80 and 443, while other ports remain untouched. Such manipulations may not uncover JonDonym connections, but block them, however. JonDo may now recognize such manipulations and then automatically connects to JonDonym service using alternative, non-manipulated ports.
• The new software Current Available Version: Version furthermore provides a more efficient upload protocol and a better automatic protection against Premium services that miscount stored data volume. Such a protection is useful, as the JonDonym services are provided by different, independent organizations. Therefore, JonDo has to explicitly protect against attacks by these individual providers.
• The program also contains many enhancements in details and error corrections.