[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] GoSC - Website Fingerprinting project

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] GoSC - Website Fingerprinting project
From: George Kadianakis <desnacked@xxxxxxxxxx>
Date: Wed, 12 Mar 2014 22:14:06 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 12 Mar 2014 18:13:00 -0400
In-reply-to: <20140312202520.GY22584@xxxxxxxxxxxxxx> (Roger Dingledine's message of "Wed, 12 Mar 2014 16:25:20 -0400")
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <531DEF9D.1070905@xxxxxxxxxxxxxxxx> <20140312202520.GY22584@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Microsoft Outlook Express 6.00.2900.5843

Roger Dingledine <arma@xxxxxxx> writes:

> On Mon, Mar 10, 2014 at 06:00:13PM +0100, Marc Juarez wrote:
>> I'm a PhD student at COSIC (COmputer Security and Industrial
>> Cryptography) in KU Leuven, Belgium. My research topic is related to
>> network traffic analysis and I'm now focused in the more specific
>> problem of website fingerprinting
>> (http://homes.esat.kuleuven.be/~mjuarezm/).
>
> Welcome!
>
>>  However, I couldn't find any open project that tackles this
>> problem in
>> https://www.torproject.org/getinvolved/volunteer.html.en#Projects
>
> We moved the 'research' ideas from the volunteer page to
> https://research.torproject.org/ideas.html a while ago.
>
> (Also, most of the research ideas don't have to do primarily with coding,
> so they're not as suited for GSoC.)
>
>> That
>> is why I'd like to propose a GoSC project for the implementation of
>> tools (packages, classes, etc.) that contribute in the development of a
>> countermeasure against this attack.
> [snip]
>> I would like to have some feedback from the Tor developers about this
>> project (advices, comments..). I plan to specify it in more detail in
>> the application and to start coding some module that could be shown. But
>> I would like to know if the underlying idea is something that could be
>> of interest for the community.
>
> It's definitely something that we need at some point. But I think your
> first challenge will be finding a mentor with both the time and interest
> to help you make it work.
>
> It seems like some of the approaches would best be done inside Tor (as
> modifications to the Tor program), and some of them would best be done
> in a separate pluggable transport? Or should they all be done in a PT?
> Can the bandwidth shaping in Scramblesuit (obfsproxy) be used as a
> building block here?
>

Might be a mere technicality, but it's currently the case that only
bridges and bridge clients can use PTs.

If we ever wanted to deploy these anti-traffic-analysis PTs to the
whole network, we would have to add PT support to all clients (HSes
might also benefit from this) and to all relays.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] GoSC - Website Fingerprinting project
  - From: Marc Juarez
- Re: [tor-dev] GoSC - Website Fingerprinting project
  - From: Roger Dingledine

Prev by Author: Re: [tor-dev] Combining obfsproxy+scramblesuit with OpenVPN
Next by Author: [tor-dev] Pluggable transports meeting tomorrow (Friday 14th of March 2014)
Previous by thread: Re: [tor-dev] GoSC - Website Fingerprinting project
Next by thread: [tor-dev] GoSC - Website Fingerprinting project
Index(es):
- Author
- Thread