[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8243 [Tor]: Getting the HSDir flag should require more effort

Subject: Re: [tor-bugs] #8243 [Tor]: Getting the HSDir flag should require more effort
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 24 Feb 2015 23:06:50 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 24 Feb 2015 18:06:59 -0500
In-reply-to: <044.224614467bf5e4059b9d9ba84e90f4fb@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.224614467bf5e4059b9d9ba84e90f4fb@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#8243: Getting the HSDir flag should require more effort
-------------------------+-------------------------------------------------
     Reporter:  arma     |      Owner:
         Type:           |     Status:  new
  enhancement            |  Milestone:  Tor: 0.2.7.x-final
     Priority:  normal   |    Version:
    Component:  Tor      |   Keywords:  SponsorR tor-auth needs-proposal
   Resolution:           |  026-triaged-1
Actual Points:           |  Parent ID:
       Points:           |
-------------------------+-------------------------------------------------

Comment (by asn):

 It seems that most realistic attacks on HSDirs will be plugged by
 introducing non-deterministic HSDir selection (#8244) and keyblinding
 (#8106).

 This ticket though could help against attacks by less sophisticated
 adversaries. For example by making the HSDir flag a bit harder to get, we
 can defend against weaker adversaries like the lizards or people who
 bruteforce their relay's public key to become the HSDir of hidden services
 and then measure their popularity. Roger suggested that HSDir flag should
 only be given to Stable relays, and this might be a sane idea.

 Looking at metrics, this will half the number of HSDirs from 3k down to
 1.5k. The number is still big enough and getting Stable flag requires a
 week, which means that it will give us time to !reject big sybil attacks.

 Maybe more thought needs to be given here, but making it harder to become
 an HSDir flag seems to be a good idea.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8243#comment:16>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #14389 [Tor]: Improve TBB UI of hidden service client authorization
Next by Author: [tor-bugs] #15022 [Service - lists]: Transfer tor-qa ownership to Sherief
Previous by thread: Re: [tor-bugs] #15021 [Trac]: Clarify working with sources
Next by thread: [tor-bugs] #15022 [Service - lists]: Transfer tor-qa ownership to Sherief
Index(es):
- Author
- Thread