[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-dev] [network-team] [doodle poll] Meeting to discuss guard proposal draft status
- To: Isis <isis@xxxxxxxxxxxxxx>, Nick Mathewson <nickm@xxxxxxxxxxxx>, Ola Bini <obini@xxxxxxxxxxxxxxxx>, Fan Jiang <fanjiang@xxxxxxxxxxxxxxxx>, Tania Silva <tsilva@xxxxxxxxxxxxxxxx>, Ivan Pazmino <ipazmino@xxxxxxxxxxxxxxxx>, Reinaldo Junior <rjunior@xxxxxxxxxxxxxxxx>, Chelsea Komlo <ckomlo@xxxxxxxxxxxxxxxx>
- Subject: Re: [tor-dev] [network-team] [doodle poll] Meeting to discuss guard proposal draft status
- From: Nick Mathewson <nickm@xxxxxxxxxxxx>
- Date: Mon, 11 Jul 2016 12:48:18 -0400
- Cc: tor-dev@xxxxxxxxxxxxxxxxxxxx
- Delivered-to: archiver@xxxxxxxx
- Delivery-date: Mon, 11 Jul 2016 12:48:36 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc:content-transfer-encoding; bh=UhiZilrhzxCkF+IHWBbFHmFhHYgV40eq+SmNeQbO3sY=; b=DO4PAnCtTT26B7RnTMsdO5goUdb8xonjDpcKSq+PnkLk2rpQay2ZDDG4OhyltqlDZp XUxjfRzdbYJtY9iy4ANel11D6p/+5+k2bFXNIaoI/Z0vCKEQXgPiDvOKyDa9PAxFwGJk b7kaXjWt4PByo3TJA0rbbWySI58z6fViRrxiu3yBeCrLUxFp+WamijwfXixg4r8tXDJI xvSIHz39Fcl9bptdcnlL71nhVA1dfSdSHld/JwjmH0kid4FjEoEv1Otrl/0tc0xy7K73 XGkDUY/BWBv6ZyoJK/2ZN75hpvwL7xPC4L1YhyZBkmziSpzbbaNByXnmuiAbLbox5I6Y b6Zg==
- In-reply-to: <20160711164134.GB1489@patternsinthevoid.net>
- List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
- List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
- List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
- List-post: <mailto:tor-dev@lists.torproject.org>
- List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
- List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
- References: <CAKDKvuwOiGvB5zeDT4Y-y1iLMCOw-sQ2uGDuhhuqmGRKu2gxVA@mail.gmail.com> <87a8hwf3ih.fsf@riseup.net> <20160706034425.GA7419@patternsinthevoid.net> <CAKDKvuykZ1cRTYxQBU_ZeT=NTfbUaT=bRM7jRP4a3uLy5j5eLQ@mail.gmail.com> <87vb0iesr7.fsf@riseup.net> <CAKDKvuw3_uAhwZN4NdfcY0zOdR=40s20Q5R+HxF3Q1nnE=XTVw@mail.gmail.com> <20160711164134.GB1489@patternsinthevoid.net>
- Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
- Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
On Mon, Jul 11, 2016 at 12:41 PM, isis agora lovecruft
<isis@xxxxxxxxxxxxxx> wrote:
> Nick Mathewson transcribed 1.1K bytes:
>>
>
> Various questions and responses to the meeting logs [0]:
>
> 1. I'm not sure I understand the difference between USABLE_FILTERED_GUARD and
> CONFIRMED_GUARDS.
USABLE_FILTERED_GUARDS is a subset of FILTERED_GUARDS where "is
running" is "yes" or "maybe".
> 2. It seems like USED_GUARDS and CONFIRMED_GUARDS are being used
> interchangeably. I realise that Nick at some point in IRC mentions the
> former was renamed to the latter, but it isn't consistent and with so many
> variables I'm finding myself a bit confused.
Right. CONFIRMED_GUARDS is the new name for USED_GUARDS. I should
replace every instance of the old.
> 3. From:
>
>> 14:14:41 <nickm> (There is also a secret novelty in how it handles bridges
>> and entrynodes)
>
> I don't actually see EntryNodes mentioned in the proposal?
Appendix A.2 ?
> 4. How were all the parameters in §A.1 [1] chosen? Did we simulate the
> algorithm yet and fuzz the parameters under different network conditions
> like we did before?
All were totally pulled out of thin air, or out of the previous
iteration of the proposal.
> 5. For
>
>> 14:22:11 <nickm> #action try to think of ways that the "don't add to
>> USED_GUARDS till we use it" rule can be manipulated by an
>> attacker
>
> I assume the function governing membership in the set of FILTERED_GUARDS
> pushes old/stale/less-usable/less-good guards out of the set when new ones
> are found? That is, the size of FILTERED_GUARDS can't just grow
> indefinitely, right?
FILTERED_GUARDS can only grow up to the size of SAMPLED_GUARDS; but
the size of SAMPLED_GUARDS is limited by MAX_SAMPLE_THRESHOLD.
> 6. For "treating primariness as a continuum", do you mean that we
> should assign some float values to a bunch of guards we're trying
> all in parallel, then pick the guard that succeeded that had the
> highest value? I worry a bit that this would complicate the code
> and potentially result in many attempted connected to substantially
> less-suitable nodes.
It would mean that instead of treating the first N_PRIMARY_GUARDS
members of CONFIRMED_GUARDS as 100% primary, and the remaining members
as 0% primary, we would somehow treat the i'th gmember of
CONFIRMED_GUARDS as f(i)% primary for some f.
Right now "primariness" is used for several things: we'd need to look
at which of these should look at a boolean, and which could instead
look at a continuous variable. I do not yet know whether this is a
good idea.
> [0]: http://meetbot.debian.net/tor-dev/2016/tor-dev.2016-07-07-13.59.log.html
> [1]: https://trac.torproject.org/projects/tor/attachment/ticket/19468/prop259-redux-v3.txt#L414
>
> --
> ♥Ⓐ isis agora lovecruft
> _________________________________________________________
> OpenPGP: 4096R/0A6A58A14B5946ABDE18E207A3ADB67A2CDB8B35
> Current Keys: https://fyb.patternsinthevoid.net/isis.txt
cheers,
--
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev