[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor bridge delivery method

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor bridge delivery method
From: Xu yourdad <moothecowlord@xxxxxxxxx>
Date: Wed, 15 Feb 2012 01:01:34 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 14 Feb 2012 19:01:47 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=s5VfsyTXC6qK6/jha8pnWC6aGTsLW/GbQf4ReSmqVjw=; b=sjdZ3xd/ShXXhJiWb905SKr1aXM8KW2GLhAIAnd+FfIy27W0lp+U9AClmpIzKXq1mM HKwaQ34k1e3ymGTI+MrZyHd2oHkRD4CL7kJUZLAbMF3M5v0dbz4hIB7pbK9+8923on9q FItxfU35PoDDy4rKwNDcjephHY9+bA/pkP4i8=
In-reply-to: <20120214153212.56343955@kilik>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAJ0Hx8PcZnhpHBK9BeSMr+3zfZiOWarNiiJwdYXYqyBkmtWv8g@xxxxxxxxxxxxxx> <20120214153212.56343955@kilik>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

Hi Andrew,

I have read those 2 links. The design I'm thinking of would be resistant to
probing attacks presented in the "ten ways to discover bridges" article in
that it would modify the bridge protocol to be "semi" public. The basic
idea is to perform hand shaking between the bridge and the client in a 3rd
party server without delivering information to either of them until it has
been established the client can be forwarded to the bridge, which will then
be listening for that particular IP.

This method is based on the premise that client certificates can be
distributed to individuals on site. It's weakness is for attackers to gain
access to a valid client certificate, so this bridge delivery method will
be at its highest efficiency if it is used to provide high connectivity to
a limited amount of key individuals.

I need a couple questions answered before i can proceed further:
1) Can I assume client certificates may be distributed safely to people in
hostile zones?
2) Is this the right place to discuss the design in details?
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor bridge delivery method
  - From: Xu yourdad
- Re: [tor-talk] Tor bridge delivery method
  - From: Andrew Lewman

Prev by Author: [tor-talk] Tor bridge delivery method
Previous by thread: Re: [tor-talk] Tor bridge delivery method
Next by thread: [tor-talk] Tor 0.2.3.12-alpha is out
Index(es):
- Author
- Thread