[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Relay early attack flow

To: tor-talk <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-talk] Relay early attack flow
From: Ondrej Mikle <ondrej.mikle@xxxxxxxxx>
Date: Tue, 19 Apr 2016 12:14:49 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 19 Apr 2016 06:15:04 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to; bh=CCMMfYGR/gSNyHQebVefVH/CQEzv+gbzN+eqLtv7kKY=; b=gRnyB3SuX1ZBTF4vmTr0qCZRVWXSaASM+eDZiefZFI3qXSHIBoz+09bPhagxxjB+Qh F3ae3lh3hBr4+pJ600I6zCDk0HtBLAo82qg9gO7evjepPG4dohhwlJ3Utxa1ukiIWLrc EpVYk4SxrLl+G2bUIx4sPQ0bQOxp0dgh3v3mpK6UpxoJrtC5Xc01CIcTMQwg1+G9aFAg WfhO/YQRnS2VHM9BQP/xWyfnLSoqaxAqoDIgVBLHq4iq6EWkqhCtL9ND/IDEFj2XGtGb BWn28rVI7E0G6KRoxQkwz2UYwaGhDdm0W2pTu6UDi0f0qRNuQQdREoXIC2DduqKZhMMy n8bA==
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi,

I've recently had a look at the old relay early confirmation attack [1],
but can't remember what the exact flow of the attack is - i.e. which nodes
the attacker needs to control to deanonymize a) client b) hidden service
location.

For client, is client's guard and HSDir node enough? I.e. HSDir encodes the
service name in relay/relay early cells and guard picks up the pattern?
Similarly, for hidden service is control of the service's guard and HSDir
node enough?

Ondrej

[1]
https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] Traffic shaping attack
Next by Author: [tor-talk] Roger
Previous by thread: Re: [tor-talk] Traffic shaping attack
Next by thread: [tor-talk] Tor Opsec Questions
Index(es):
- Author
- Thread