[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Could Tor be used for health informatics?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Could Tor be used for health informatics?
From: Nathan Freitas <nathan@xxxxxxxxxxx>
Date: Mon, 30 May 2016 21:18:48 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 30 May 2016 21:19:06 -0400
In-reply-to: <512753.f304d0d471761633324c4f52a0a8b5991947c787@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <1702871614.31614.1464651525212.JavaMail.zimbra@xxxxxxxxxxxx> <1539309998.31648.1464653988743.JavaMail.zimbra@xxxxxxxxxxxx> <512753.f304d0d471761633324c4f52a0a8b5991947c787@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <20160531010840.GA3189@demorgan>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Mon, May 30, 2016, at 09:08 PM, Seth David Schoen wrote:
> Paul Templeton writes:
> 
> > Where Tor may fit...
> > 
> > The Tor network would provide the secure transport - each site would create an onion address. Central servers would keep tab of address and public keys for each site and practitioner.
> 
> I'm not convinced this is a good tradeoff for this application.  The
> crypto in the current version of hidden services is weaker in several
> respects than what you would get from an ordinary HTTPS connection.
> These users probably don't need (or want?) location anonymity for either
> side of the connection and may not appreciate the extra latency and
> possible occasional reachability problems associated with the hidden
> service connection.
> 

I think the benefit of being able to run Onion services deep within a
firewalled network without exposing public Internet IPs is an
operational security value that outweighs the strength of the crypto. If
you add in the extra hidden service authentication feature, it also
means the Onion service is not even reachable unless you have been given
the extra special secret cookie/token through another channel.

It is these aspects of Onion services that have drawn me to them for use
in IoT applications, and I think they are relevant to the exchange of
sensitive health data, as well.

Some of what I've been thinking about our outlined in these slides:
https://github.com/n8fr8/talks/blob/master/onion_things/Internet%20of%20Onion%20Things.pdf

+n

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Could Tor be used for health informatics?
  - From: Paul Syverson
- Re: [tor-talk] Could Tor be used for health informatics?
  - From: Spencer

References:
- [tor-talk] Could Tor be used for health informatics?
  - From: Paul Templeton
- Re: [tor-talk] Could Tor be used for health informatics?
  - From: Seth David Schoen

Prev by Author: [tor-talk] Audio fingerprinting
Next by Author: Re: [tor-talk] Which reputable webmail providers function well with Tor?
Previous by thread: Re: [tor-talk] Could Tor be used for health informatics?
Next by thread: Re: [tor-talk] Could Tor be used for health informatics?
Index(es):
- Author
- Thread