[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #3507 [Tor Hidden Services]: Allow tor hidden services to delegate to operational public keys

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #3507 [Tor Hidden Services]: Allow tor hidden services to delegate to operational public keys
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Thu, 29 Sep 2011 23:05:11 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 29 Sep 2011 19:05:21 -0400
In-reply-to: <043.b613eb54444d65127697313e163f34f3@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.b613eb54444d65127697313e163f34f3@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#3507: Allow tor hidden services to delegate to operational public keys
---------------------------------+------------------------------------------
 Reporter:  pde                  |          Owner:  rransom
     Type:  enhancement          |         Status:  new    
 Priority:  normal               |      Milestone:         
Component:  Tor Hidden Services  |        Version:         
 Keywords:                       |         Parent:         
   Points:                       |   Actualpoints:         
---------------------------------+------------------------------------------

Comment(by pde):

 Under scheme (1), where the hidden service key is airgapped, and a set of
 pre-computed, signed descriptors for the operational key is stored on the
 operational server, the tricky question is "how large should that pre-
 computed set of descriptors be?".

 If it's small, the service operator will have to frequently use their
 airgapped system to make new descriptors and install them on the
 operational system.

 If it's large, then an attacker who compromises the operational system
 will be able to keep control (or at least partial control?) of the hidden
 service for an extended period of time.

 Designs (2) and (3) have the virtue that the operator does not need to
 ferry data between their airgapped and operational systems, unless and
 until the operational system is compromised.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3507#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #4148 [Tor bundles/installation]: Browser Bundle Firefox in Wrong Folder
Next by Author: Re: [tor-bugs] #4125 [Tor Relay]: Implement proposal 176 (renegotiation-free handshake)
Previous by thread: Re: [tor-bugs] #4148 [Tor bundles/installation]: Browser Bundle Firefox in Wrong Folder
Next by thread: [tor-bugs] TorCtl, Is the ControlPort enabled?
Index(es):
- Author
- Thread