[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Fri, 16 Aug 2013 17:10:38 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 16 Aug 2013 17:10:49 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=fdaPplWd7p0SenL4pcdwHgFz2VV2mpnWYwregdBjSrQ=; b=DGN00K5u+wIIFayDyUXqxn9kWiSQOdFV+w1h+rbR6bXpXstodtRINi9lglHx3kHW59 81om+LwcV1do8WxCUsXMpIDQFoOCQpmSWEU06+dsqh/1Gt35FIpv9v3TgRTewdpzKNWY DVoSjJZ7ORqZjhqvRplP9uIguWh+j3Ki/aPgGwE1RqMmuJerQCv3bxR8hUaxICJt59zm Z3twfN0KepabUz1zCDhUU/SRS2SMrMhVnX/vcM6JVL/g+Y7FwoaPxUodxo1TrrbkaNx6 qKB3XQhyCi5A23883YVQwrT8g+jpIHD5uNYTkR8k9n4bm18OwcirbtXjW76ND6hRDtzr KM5A==
In-reply-to: <87zjshso56.fsf@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <87zjshso56.fsf@xxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> I'm posting the draft of a proposal that specifies how to hide HS
> descriptors and addresses from the hidden service directories.
>...
>  HSDirs could still learn the address of the HSes by logging the client
>  directory requests (which contain the hidden service address).
>...
>  Currently, Hidden Services upload their unencrypted descriptor to
>  hidden service directories (HSDirs). HSDirs store the unencrypted
>  descriptor in an internal map of: <hs address> -> <hs descriptor>
>  When a client wants the descriptor of an HS, it asks an HSDir for
>  the descriptor that corresponds to <hs address>. If the HSDir has
>  such an index in its map, it returns the <hs descriptor> to the
>  client.

It is known there is a de-anon paper regarding HS, that is a separate
weakness.

But the above words about HSDirs having plaintext access to any
plaintext or decodeable '.onion' string (whether via the descriptor
or request argument) is, as far as I know in current operation,
being consistently and badly misdated, to the point of causing
confusion, even in the above paper.

In current rend-spec.txt we have Sec 1.3, v2 descriptors are used
post 0.2.2.1-alpha, specifically...

descriptor-id =
 H(permanent-id | H(time-period | descriptor-cookie | replica))

???
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
  - From: Nick Mathewson

References:
- [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
  - From: George Kadianakis

Prev by Author: Re: [tor-dev] [draft] Proposal 220: Migrate server identity keys to Ed25519
Next by Author: Re: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
Previous by thread: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
Next by thread: Re: [tor-dev] Draft of proposal "Stop HS address enumeration by HSDirs"
Index(es):
- Author
- Thread