[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] obfsproxy buffering

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] obfsproxy buffering
From: David Stainton <dstainton415@xxxxxxxxx>
Date: Mon, 18 Nov 2013 08:39:30 -0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 18 Nov 2013 11:39:42 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=VMglSLxw9Xmorn0GNmL3FDT/5VQqiDjovbQQHXNBPvs=; b=re/L+rtt9p6hi7AZR5k7O6/tY4xJ9NSHnRV1lC0hT7CKIM7ypJKrYSnSD6rVGUBo6R t3DeNs1vElklt/vEwVDhje/iJL27u02c8kbdoglJELqWWoIS8tB1b1W5HAThFoVYL8t4 PQhXme+kTDs6PUPf3nYhhY9WiazMkivxrWjOg0hGCIwTp1oQilNZlA15x9xhvz7RpcoW Gl6VcDawQ0zweaZ+bU3KxgtBtEbFl2BqZVcWCYNGm1lDb7latdQyWR4LCUYeWnaWkttw uFvfr6q/3nVdUNSK/k8k9AnEnfStel6TiwcS7c7tsNrxNBwS0iEVo91Wbm7lr2CJ/qqW xMdQ==
In-reply-to: <20131118091614.GC10035@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAFN1edrQS2pB7aq8a6wa1BDnZiemZLbB1xuqKTeMAxd5=v4Dww@xxxxxxxxxxxxxx> <20131118091614.GC10035@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

>> It seems like the solution is to write a super simple "framing
>> protocol"... which is to say that I can first send a frame length; and
>> on the receiving end simply read until frame length worth of data is
>> consumed... and then apply the crypto_stream cipher on that frame with
>> the correct corresponding nonce.
>
> That sounds like a reasonable solution.  ScrambleSuit also has its own protocol
> header, if that helps:
> https://gitweb.torproject.org/user/phw/scramblesuit.git/blob/HEAD:/message.py#l161

Cool. Thanks! I'll take a look.

> Also, I'm probably stating the obvious here, but you seem to be using a static
> key for encryption and decryption.  That results in a many time pad, i.e., the
> same key is used for many plain texts.  That's a problem because Tor's TLS
> handshake is predictable and a censor could observe that multiple independent
> SaltyStream connections share several bytes in their handshake.  You might want
> to use a key derivation function, as also suggested by the NaCl doc:
>
>> NaCl does not make any promises regarding the resistance of crypto_stream to
>> "related-key attacks." It is the caller's responsibility to use proper
>> key-derivation functions.

I wrote this as a sort of rough draft... It is meant to accept a key
from the commandline... you know, for testing.
So I specified default keys... but really this is just for testing. To
be useful at all there'd have to be
proper key generation like you are saying and key exchange...

It's OK to use crypto_stream to encode multiple messages with the same key
as long as the nonce is different each time :

"""This means that an attacker cannot distinguish this function from a
uniform random function. Consequently, if a series of messages is
encrypted by crypto_stream_xor with a different nonce for each
message, the ciphertexts are indistinguishable from uniform random
strings of the same length."""


Cheers

David
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] obfsproxy buffering
  - From: David Stainton
- Re: [tor-dev] obfsproxy buffering
  - From: Philipp Winter

Prev by Author: Re: [tor-dev] obfsproxy buffering
Next by Author: Re: [tor-dev] obfsproxy buffering
Previous by thread: Re: [tor-dev] obfsproxy buffering
Next by thread: Re: [tor-dev] obfsproxy buffering
Index(es):
- Author
- Thread