[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7098 [Tor]: Add safe-cookie authentication to Extended ORPort and TransportControlPort

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #7098 [Tor]: Add safe-cookie authentication to Extended ORPort and TransportControlPort
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Tue, 23 Oct 2012 13:15:49 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 23 Oct 2012 09:15:58 -0400
In-reply-to: <043.8c10e15cb98e078e14eebced1f3c730e@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.8c10e15cb98e078e14eebced1f3c730e@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#7098: Add safe-cookie authentication to Extended ORPort and TransportControlPort
------------------------+---------------------------------------------------
 Reporter:  asn         |          Owner:                    
     Type:  defect      |         Status:  new               
 Priority:  normal      |      Milestone:  Tor: 0.2.4.x-final
Component:  Tor         |        Version:                    
 Keywords:  tor-bridge  |         Parent:  #4773             
   Points:              |   Actualpoints:                    
------------------------+---------------------------------------------------

Comment(by asn):

 OK. I guess we have two options then:

 ----

 Protocol A:

 A very simple protocol that uses the cookie as a client-to-server
 password. The cookie is extracted from a cookie-file with a header, so as
 to avoid sending passwords of other systems on the wire.

 Note that this protocol does not make sure that the server knows the
 password. Do we even care about weird setups were a local attacker binds
 on localhost pretending to be a Tor port, and then fires up a controller
 to get the cookie?

 Protocol B:

 A protocol that uses challenge-response and the cookie as a secret, so as
 to not reveal the cookie to servers that don't know it already.

 We can use Robert's scheme, or look further into zero-knowledge proofs.
 Maybe the Socialist Millionaire Protocol can also do the trick.

 ----

 Sounds like Protocol B will be harder to design, prove and implement. Does
 our threat model include the attacks that it protects against? If not, we
 should probably do Protocol A.

 Some further questions:
 + Should it be a text-based or binary-based protocol?
 + Should the protocol be versioned?
 + Should we let the cookie be of arbitrary size? I'm leaning towards 'no'.
 32 secret bytes hold enough entropy.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7098#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #7098 [- Select a component]: Add safe-cookie authentication to Extended ORPort and TransportControlPort
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #1854 [Analysis]: Investigate raising the minimum bandwidth for getting the Fast flag
Next by Author: Re: [tor-bugs] #7192 [Tor]: parsing exit policy summary drops last character
Previous by thread: Re: [tor-bugs] #7098 [Tor]: Add safe-cookie authentication to Extended ORPort and TransportControlPort
Next by thread: Re: [tor-bugs] #6569 [Stem]: Stem network status document parsing
Index(es):
- Author
- Thread