[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Help with TOR on UDP/QUIC

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Help with TOR on UDP/QUIC
From: teor <teor2345@xxxxxxxxx>
Date: Sat, 20 Feb 2016 18:30:10 +1100
Cc: Kevin Ku <kku@xxxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 20 Feb 2016 02:30:27 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:from:subject:date:to; bh=8W6tjfCooi67qekFgV1G7+s3GrLI58sj6B5hB6mVUj0=; b=jZGUs2GcBgZDPD7eB5gQR4S6KcTZBNOAV/t6wo5a/6ETTQdU4cesvmf3xJQo56+AwR 3x310/Oy6KlY9Gv1t2rhLRTXeRdZxlIhw/lBsdlHnAuEyM2cruK9H3r15wKotSB3PcMS SuMPfx9U9SJVjxXppnNAEwlxhORaSaswTxqeP/D9bBqSz0SRp0M/tCbTDnufggXo2SGG 7dubycsBmWY2ZiBMnSRotf5f2JnsOwO7JoNNBX5UvDsYxu9ahsUGV0uWRuWcMm4Ay07v aCVCKxRKpdfECVBZMtefLTDTBa0VL9yKqz35vePH5FLwLs3nyz44amWsGFVWx7b6slMC XjfA==
In-reply-to: <CAHdmrOKZ8WO7fiAFWJ54nOz9tJG-mGjnmXq9t+x73HNQURPy7g@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAHdmrO+5V7QgQTGcmvRNqShJub3XweVRzQWEDqUT0DTc6sXYFw@xxxxxxxxxxxxxx> <336C7111-A367-41EA-BFEC-B07EF2EB5CD0@xxxxxxxxx> <CAHdmrOKZ8WO7fiAFWJ54nOz9tJG-mGjnmXq9t+x73HNQURPy7g@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 20 Feb 2016, at 16:28, Xiaofan Li <xli2@xxxxxxxxxxxxxx> wrote:

Here is a question that we have about security:
Since QUIC comes with a transport layer security, we are worried that this feature is conflicting with TOR's application layer security. By "conflicting", I don't mean the QUIC will sabotage TOR's security, but it might be doing redundant work, such as encrypting twice unnecessarily (once for QUIC's TLS and once for TOR). So, we are exploring the possibility of turning off this feature in QUIC. What do you think of this problem? Are we on the right track?

Onion Routing is designed to have multiple layers of encryption.

And the double-encryption of TLS then Tor (whether over TCP or QUIC) is beneficial because it guarantees the integrity and authenticity of the whole connection. And it provides defence-in-depth against intrusion attempts.

You might have to redo some of Tor's security proofs if you want to disable the outermost encryption layer. At the very least, you'll have to justify changing from TCP and TLS to QUIC without TLS, which is harder than TCP and TLS to QUIC and TLS.

Why not leave it on?

Tim

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

teor at blah dot im
OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Help with TOR on UDP/QUIC
  - From: Xiaofan Li
- Re: [tor-dev] Help with TOR on UDP/QUIC
  - From: Tim Wilson-Brown - teor
- Re: [tor-dev] Help with TOR on UDP/QUIC
  - From: Xiaofan Li

Prev by Author: [tor-dev] Leif's important piece on update golden keys
Next by Author: Re: [tor-dev] Support for mix integration research
Previous by thread: Re: [tor-dev] Help with TOR on UDP/QUIC
Next by thread: [tor-dev] Last network team/dev meetings of February: Wednesday and Friday and Monday!
Index(es):
- Author
- Thread