[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Timing attacks and fingerprinting users based of timestamps

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Timing attacks and fingerprinting users based of timestamps
From: Seth David Schoen <schoen@xxxxxxx>
Date: Sun, 6 Nov 2016 14:18:57 -0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 06 Nov 2016 17:19:15 -0500
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID:Subject:To:From:Date; bh=DqAt6vcp25SXSbNutnWqes4ax9ivbWgl5vbbUqaN+Y8=; b=E+tbTlq4S3+xbnk7wrWo3EogCyQ9BZP3yNZxPlchUmgKvczAACVw1zY6gXSHEXH29/jKosL2T9hPj2gKm/z0xu1sTIOuDtQMz03poepGt5ehfIZBUvF6XHAKx17U1AlYpAz8FqcU1DbLUivp48bIGM5wqOBzc7SanYvZvc7Zq8U=;
In-reply-to: <282A8137-646A-40CD-A4A3-C5FB33EDA495@riseup.net>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <282A8137-646A-40CD-A4A3-C5FB33EDA495@riseup.net>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.24 (2015-08-30)

Flipchan writes:

> So i was thinking about timing attacks and simular attacks where time is a Big factor when deanonymizing users . 
> and created a Little script that will generate a ipv4 address and send a get request to that address https://github.com/flipchan/Nohidy/blob/master/traffic_gen.py then delay x amount of seconds and do it again. This will probelly make it harder for the attacker to fingerprint the users output data due to the increased data flow coming out from the server. 
> 
> So to protect against traffic timing attacks and simular would be to generate More data.

This is called padding traffic and it's been studied a bit in relation
to systems like Tor.  Roger has often said that a conclusion of the
studies was that it's hard to get a lot of privacy benefit from most
padding schemes, but it might be good to know what the state of the
art is in padding attacks and defenses.

-- 
Seth Schoen  <schoen@xxxxxxx>
Senior Staff Technologist                       https://www.eff.org/
Electronic Frontier Foundation                  https://www.eff.org/join
815 Eddy Street, San Francisco, CA  94109       +1 415 436 9333 x107
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Timing attacks and fingerprinting users based of timestamps
  - From: Flipchan

Prev by Author: Re: [tor-talk] Please Remove Tor bridge and... from Censorship countries.
Next by Author: Re: [tor-talk] Will Quantum computing be the end of Tor and all Privacy?
Previous by thread: [tor-talk] Timing attacks and fingerprinting users based of timestamps
Next by thread: [tor-talk] Unable to enforce exit node country (ubuntu)?
Index(es):
- Author
- Thread