[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Projects to combat/defeat data correlation

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Projects to combat/defeat data correlation
From: Matthew Finkel <matthew.finkel@xxxxxxxxx>
Date: Wed, 22 Jan 2014 02:28:35 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 21 Jan 2014 21:26:34 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=date:from:to:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; bh=hKguGdaDPTMJIybsnR1BPf4jTXEdi1xYGSywfCa5GQk=; b=wm74oc3pALI+o+RWKRrxlsQ+F/2B6EustGt/rLs9hM3AnnsT4NiGyZzncPdq7ZQc4A l+5uT2vYhP39BwYC6Nb6VpO+Xw7hU7G+UG4x1k3BoUvNBnb4I0RXe+TffXBYqjh16TtH Up4dT7P7MRYUhb7snKUZo8jVX73YvYuzdvWQDR1nvWC0xMLSRWdBlwj4Td5MMmBc5sQT wtOOCVH1lHpquxRnnmxZVd24lqWcHFGSzwcZWRCHLHZSq6Q03hBK+21+E/dHPPAh6Pkg /ZxAlkufx7cLUmtY69t52j9a0gLVbw9p5CDo/8jJ8OXRWdK7JDX/D2Kxvoz2EN+JAdKL UIKw==
In-reply-to: <20140122021731.GI4180@localhost>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CALLnFZzePSY9btqC2HuQm-=_LUtg4teGMgybovw8s7drA-XMQA@xxxxxxxxxxxxxx> <20140116125358.GA4180@localhost> <CAFN1edpXty6gBLACV7HLTsWzo=DKOa=pFm6XkZU0eomcoAoAuA@xxxxxxxxxxxxxx> <20140118013958.GC4180@localhost> <20140120133012.GG14819@xxxxxxxxxxxxxxxxxxxxx> <20140120162126.GB23839@xxxxxxxxxxxxxx> <20140122021731.GI4180@localhost>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.21 (2010-09-15)

On Wed, Jan 22, 2014 at 02:17:34AM +0000, Matthew Finkel wrote:
> On Mon, Jan 20, 2014 at 05:21:26PM +0100, Philipp Winter wrote:
> > On Mon, Jan 20, 2014 at 08:30:12AM -0500, Ian Goldberg wrote:
> > > On Sat, Jan 18, 2014 at 01:40:43AM +0000, Matthew Finkel wrote:
> > > > obfs3 is supposed to be fairly difficult to detect because entropy
> > > > estimation is seemingly more difficult than typically assumed,
> > > > and thus far from what has been seen in practice this seems to be true.
> > >
> > > Wouldn't the way to detect obfs3 be to look at packet sizes, not
> > > contents?  obfs3 doesn't hide those at all, right?
> > 
> > Yes, obfs3 doesn't hide packet sizes.  As a result, Tor over obfs3
> > results in packets which are multiples of Tor's 512-byte cells
> > (excluding TLS headers).
> 
> True. I also assume that the complete absense of a plaintext header is
> a potential fingerprint, as well. 

Sorry, that should have said handshake instead of header.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Projects to combat/defeat data correlation
  - From: Jim Rucker
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: Matthew Finkel
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: David Stainton
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: Matthew Finkel
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: Ian Goldberg
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: Philipp Winter
- Re: [tor-dev] Projects to combat/defeat data correlation
  - From: Matthew Finkel

Prev by Author: Re: [tor-dev] Projects to combat/defeat data correlation
Next by Author: [tor-dev] txtorcon 0.9.1
Previous by thread: Re: [tor-dev] Projects to combat/defeat data correlation
Next by thread: Re: [tor-dev] Projects to combat/defeat data correlation
Index(es):
- Author
- Thread