[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)
From: Aaron <aagbsn@xxxxxxxxxxxxxx>
Date: Thu, 17 Oct 2013 09:47:53 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 Oct 2013 05:56:03 -0400
In-reply-to: <20131017075223.GZ10405@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20130902113522.fbd1c8081de1541914b53a1b@xxxxxxxxxxxxx> <20130902021056.GE31806@xxxxxxxxxxxxxx> <20131016215020.GF6713@xxxxxxxxxxxxxx> <525F3281.9030703@xxxxxxx> <8dc5b0c8c6aa8611e8a16937f4f42ce1@xxxxxxxxx> <20131017075223.GZ10405@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Thu, Oct 17, 2013 at 7:52 AM, Eugen Leitl <eugen@xxxxxxxxx> wrote:

> On Thu, Oct 17, 2013 at 08:18:59AM +0200, Felix Eckhofer wrote:
>
> > tried very hard to find any suggestion on how this might work in
> > your mail to no avail. Are you actually suggesting "extensive
> > personal interviews, background checks, giving polygraph tests,
> > injecting sodium pentathol to those wanting to run nodes" and expect
> > some form of serious feedback?
>
> It would be good if operators of fast exits were personally known,
> and had a history within the community. This still doesn't prevent
> deep cover moles or people turned through threats and/or bribes,
> and as soon as traffic exits it will be scrutinized, sliced and
> diced ten time to Sunday, anyway. But it would be good, yes.
>

Security based on trusting the exit operators won't work; even the most
honorable operators are subject to upstream taps or could have their exits
broken into and backdoored. Disincentivsing people from helping the Tor
network by suggesting that in order to help you have to give up personal
privacy seems more likely to hurt than help.

A different approach would be figuring out how to increase the diversity
and numbers of fast exits, perhaps by strengthening protections for running
exits in countries where that isn't the case, and educating lawmakers and
enforcers so that perhaps some day our advice won't be "Don't run an exit
at home" [1] but look more like that of the Open Wireless project [2].

--Aaron

[1] https://blog.torproject.org/running-exit-node
[2] https://openwireless.org/

--
> tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
> To unsubscribe or change other settings go to
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries
  - From: Roger Dingledine
- Re: [tor-talk] New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries
  - From: Joe Btfsplk
- Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)
  - From: Felix Eckhofer
- Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)
  - From: Eugen Leitl

Prev by Author: Re: [tor-talk] "Remation" -- joint GCHQ/NSA meeting on Tor
Next by Author: Re: [tor-talk] Tips for configuring and using Tor for anonymous Bitcoin usage?
Previous by thread: Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)
Next by thread: Re: [tor-talk] Verifying node operator identity (was: New paper : Users Get Routed: Traffic Correlation on Tor by Realistic Adversaries)
Index(es):
- Author
- Thread