[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-dev] Probability of Guessing a v3 Onion Address

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-dev] Probability of Guessing a v3 Onion Address
From: "procmem@xxxxxxxxxx" <procmem@xxxxxxxxxx>
Date: Wed, 11 Dec 2019 21:31:53 +0000
Autocrypt: addr=procmem@xxxxxxxxxx; keydata= mDMEXevtqRYJKwYBBAHaRw8BAQdACXm5aXJsf+yMVeJSzpl/F9qMGAOl+eYIi8X5P3qtWD20 J3Byb2NtZW1AcmlzZXVwLm5ldCA8cHJvY21lbUByaXNldXAubmV0PoiWBBMWCgA+FiEExDsh TFAJrrnoy7jkKjZN+H4qkjsFAl3r7akCGwMFCQlmAYAFCwkIBwMFFQoJCAsFFgIDAQACHgEC F4AACgkQKjZN+H4qkjtCtwEAq7vF1hNVhddWuW+7APk4kHFeX/aQ8NGOaF2UPBSFMRwA/Al3 gtO0GLHMbmHzbogK7VotFA67EGb/QsAK2IavSsQMuDgEXevtqRIKKwYBBAGXVQEFAQEHQCui ZZ/lJ5rjZFw4zTkiCSui8CE4JrUR333z0sKBodp7AwEIB4h+BBgWCgAmFiEExDshTFAJrrno y7jkKjZN+H4qkjsFAl3r7akCGwwFCQlmAYAACgkQKjZN+H4qkjuD8QD+OMmfV69WYmbAo0BN bNz1gEqrDWOAj27WlDaRQ97YQAIA/0jRlH6OzZOcNAGC7bBMVlq+/9Np8MVMGeFj9Y2mVewO
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 11 Dec 2019 16:32:12 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1576099917; bh=Yf8jX2OD0Ufz3o7zds2a438yqqcJMWjTQT2Owga7oR0=; h=To:From:Subject:Date:From; b=Lv/WYrSlOctqLZ6FgeyMHSfPL7yrkqpz75IbzNXkCEdGeZhS9BTFGy5r5OZnIU9VZ vRD4ejPzpXfB6RvvTXk9HrugT/oojon+AXun2rMPpQxGnfTmTz4RUYh/WNyugvQPfq zeKm0cbodt3nuwed2ioongLMQjsJtLimr7hyJ9Tg=
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi I was wondering what the mathematical probability of guessing an
onion v3 address that is kept secret.

Or asked differently: what is the entropy of v3 addresses if an
adversary decides to bruteforce the entire keyspace?

I am struggling to come up with a usecase for authenticated v3 services
when keeping an address secret has the same effect and one can generate
multiple addresses for the same server and share them with different
entities.  The degraded usability of v3 auth services compared to v2 is
the reason I'm asking.


_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Probability of Guessing a v3 Onion Address
  - From: Matt Traudt
- Re: [tor-dev] Probability of Guessing a v3 Onion Address
  - From: s7r

Prev by Author: Re: [tor-dev] Onion DoS: Killing rendezvous circuits over the application layer
Next by Author: Re: [tor-dev] Probability of Guessing a v3 Onion Address
Previous by thread: [tor-dev] Trip Report: Reproducible Builds Summit
Next by thread: Re: [tor-dev] Probability of Guessing a v3 Onion Address
Index(es):
- Author
- Thread