[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Netflow analysis breaks Tor

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Netflow analysis breaks Tor
From: a <akademiker1@xxxxxxxxxxxxxx>
Date: Sat, 15 Nov 2014 00:57:14 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 14 Nov 2014 18:58:45 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=from:message-id:date:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=c1g+eeFZo3lnSlQW8VC3qaUh0dQce8RkssWk75UKb9o=; b=NUuLsxhELCcjCmJfzCYcpLAqj3IXRV3F0fyvXSUQ4wYxbJlnZ1KEsXcaPFxWZA3jJQ NXmpNeWq27Dn5E+WZRHbOgOXpsSCrRbgRK2liBxqq9D2JkKtKA2L2ovtCQ88kH/sIaZb YAVksSJlORMbUz7b9os6w6Hm4GWdKr2yH6QVuYEceCfLcGX03I9T8Sxundb7iey/A3PP wTGJzJ49wHZfxrSdJ2NVChmUzW8W5VhgD4iDChlnFQWxIJoplgoa3S0YqLGX5Jv/5NJ4 PBr/1uhFyxO+sKFlUwL+/zQxSrJzwjVhYkAtb94SznN6b+EddIBCvHKK8ktlUy8cuXss cfbQ==
In-reply-to: <CAD2Ti29P2sRYqq8eRASTAnx4Q6x+G208DnA-dPPBHqSLQP2AAA@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAD2Ti29P2sRYqq8eRASTAnx4Q6x+G208DnA-dPPBHqSLQP2AAA@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0

After reading the paper it seems the attacker needs to inject html
traffic into an unencrypted TCP connection, so not only it would be
detectable by the client but also wouldn't work on Hidden Service
traffic. Am I missing something?

> Professor Sambuddho Chakravarty, a former researcher at Columbia
> Universityâs Network Security Lab and now researching Network
> Anonymity and Privacy at the Indraprastha Institute of Information
> Technology in Delhi, has co-published a series of papers over the last
> six years outlining the attack vector, and claims a 100% âdecloakingâ
> success rate under laboratory conditions, and 81.4% in the actual
> wilds of the Tor network.
> 
> http://thestack.com/chakravarty-tor-traffic-analysis-141114
> https://mice.cs.columbia.edu/getTechreport.php?techreportID=1545&format=pdf
> 
> Future defense work: dummy traffic padding
> 
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Netflow analysis breaks Tor
  - From: grarpamp

Prev by Author: Re: [tor-talk] Operation Onymous against hidden services, most DarkNet markets are down
Next by Author: Re: [tor-talk] Making Apache server talk to the Tor network?
Previous by thread: [tor-talk] Netflow analysis breaks Tor
Next by thread: Re: [tor-talk] Netflow analysis breaks Tor
Index(es):
- Author
- Thread