[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Profiling Tor users via keystrokes

To: tor-talk@xxxxxxxxxxxxxxxxxxxx, flapflap <flapflap@xxxxxxxxxx>
Subject: Re: [tor-talk] Profiling Tor users via keystrokes
From: Seth <list@xxxxxxxxx>
Date: Thu, 30 Jul 2015 20:15:04 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 30 Jul 2015 23:24:03 -0400
Dkim-signature: v=1; a=rsa-sha1; c=relaxed; d=sysfu.com; h=content-type :to:subject:references:date:mime-version :content-transfer-encoding:from:message-id:in-reply-to; s=main; bh=e5pLMXsWY0pcZiIcWauvQ+5cPJI=; b=Ll2bk0MYya5UUQ2Yn2g95htPHCSy nytV38eZwcbsbJgFBFryQM+dc35iTVzO2UxR6PwNF1ihtrxnVzDwm8Tb5P8RIPTY LhDmpCAmGhPv1Ufn2y8Y3DH7Eo7e8HNZiNx1KQeZQ+R/Fep03y7ugo1Lg6Kpa17o X7EEbgEhPpIac54=
Domainkey-signature: a=rsa-sha1; c=nofws; d=sysfu.com; h=content-type:to :subject:references:date:mime-version:content-transfer-encoding :from:message-id:in-reply-to; q=dns; s=main; b=aeq5D+3Oobr+/avY5 aNz3zF6Zza6mUjOGFoX66+QX0C67Qf+bayP/OUB9I8pp3Kw2pC32VMa5/4A7/ZIh /kzqBXrV1CbfaoKmPDJVfZ9pnSvXqQv95vjNqJqsxp0L3CzlMdnGtMPbV8xUkvGB PCKPRGwgKeO2poZ7fr6slWA58c=
In-reply-to: <55BAB4EF.2090905@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <55BAB4EF.2090905@xxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Opera Mail/1.0 (Win32)

On Thu, 30 Jul 2015 16:36:15 -0700, flapflap <flapflap@xxxxxxxxxx> wrote:

http://arstechnica.com/security/2015/07/how-the-way-you-type-can-shatter-anonymity-even-on-tor/
says that apparently it's possible to deanonymise Tor users by analysing
their keystrokes in input fields of websites.

Is it valid to assume that such a technique is possible to be deployed
by, for example, cloudflare? (needs JavaScript, has an input field)
(or is it required for learning to always enter the same text by the
same user?)

Is there need for modifications in the Tor Browser Bundle/upstreamFirefox?

Back in the late 90's there was a company in the Seattle area calledBiopassword [1] that sold a biometric typing cadence two factorauthentication product for Windows systems. I demoed it and it was eerilyeffective.


Can only imagine where the technology is now.

[1] https://web.archive.org/web/20010201063600/http://www.biopassword.com/
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Profiling Tor users via keystrokes
  - From: flapflap

Prev by Author: Re: [tor-talk] OFTC and Tor
Next by Author: Re: [tor-talk] pdf with tor
Previous by thread: Re: [tor-talk] Profiling Tor users via keystrokes
Next by thread: [tor-talk] Profiling Tor users via keystrokes
Index(es):
- Author
- Thread