[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Practical deanonymization using CPU load covert channels

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Practical deanonymization using CPU load covert channels
From: bancfc@xxxxxxxxxxxxxxx
Date: Sat, 16 Jul 2016 04:37:45 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 15 Jul 2016 22:38:36 -0400
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=openmailbox.org; s=openmailbox; t=1468636673; bh=82HgDCTz0Jly8yvzuUO3jlTS7gvH7q4mO1DAPCLg+EM=; h=Date:From:To:Subject:From; b=fBnNjG4/997EQ8VSiooqkJ/cYXRubK8lIcJd9w83iI3STjS7/IdT2ylOMyM1ak7eQ Ok8uhG+fDxutEQ1Lk8tQkaCOSvggzUbg58RA3IrQTw6a5xH1GcYe/e5ex/eqfIJz5V qfTTezHvErkPyik2FyPymVAiKMTnqUxW3xcaGVN4=
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail/1.0.6

Hi. Whonix collaborator here. We've given a lot of thought to many typesof clock based attacks including the one you are researching so we areinterested to know more about how this applies to our platform.

To run Whonix in KVM please see the relevant steps here [0]. Let me knowif you have any further questions on setting it up.



Re-adjusting some of the terms you use to apply to VMs:

* Limiting CPU resources for Tor as opposed to the browser component iswhat counts? (both are separate in the Whonix model)

* The cgroup equivalent for a hypervisor is to limit the number of CPUsthe Tor VM has access to? (currently one core - on a quad-core systemthat's the 25% limit you recommend)

* Setting the Tor process to use nice 19 should take care of the pingtimings you mention?

* Taking into account that some users connect to the clearnet usingsystem running Whonix, do these mitigations still hold up?



***

[0] https://www.whonix.org/wiki/KVM#First_time_user.3F
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Practical deanonymization using CPU load covert channels
  - From: Ethan White

Prev by Author: Re: [tor-talk] Practical deanonymization using CPU load covert channels
Next by Author: Re: [tor-talk] Why so may exit node IP addresses in the TBB?
Previous by thread: Re: [tor-talk] Practical deanonymization using CPU load covert channels
Next by thread: Re: [tor-talk] Practical deanonymization using CPU load covert channels
Index(es):
- Author
- Thread