[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Pluggable-transport implementations of your website fingerprinting defenses

To: Xiang Cai <xcai.stonybrook@xxxxxxxxx>
Subject: Re: [tor-dev] Pluggable-transport implementations of your website fingerprinting defenses
From: David Fifield <david@xxxxxxxxxxxxxxx>
Date: Mon, 10 Nov 2014 09:59:52 -0800
Cc: tor-dev@xxxxxxxxxxxxxxxxxxxx, Tao Wang <t55wang@xxxxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 10 Nov 2014 13:00:20 -0500
In-reply-to: <A7F82241-1D20-4A2C-B3ED-AB904D1179BF@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20141109223357.GE11865@xxxxxxxxxxxxxxxxxxxxxxxx> <545FF196.30705@xxxxxxxxxxxxxxxxx> <A7F82241-1D20-4A2C-B3ED-AB904D1179BF@xxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.23 (2014-03-12)

On Sun, Nov 09, 2014 at 08:23:33PM -0500, Xiang Cai wrote:
> I started to work on csbuflo code a long time ago, and I wasnât using any
> version control software back then, so I donât have file commit history eitherâ
> Sorry about that.
> 
> However, I only modified several core files based on openssh-5.9p1 source code:
> clientloop.c
> serverloop.c
> packet.c
> misc.c
> and related header files. A simple diff between these files and the original
> ssh code will tell you what I modified.
> 
> I am not sure if the code is directly useable for your purpose, but Iâll
> briefly talk about what my code does, and hopefully, it will give you some help
> when reading the code. 
> 
> The code actually implements the Glove system, which requires that both the
> client and server have a transcript of âsuper tracesâ. â I believe the location
> of the transcript is hardcoded as â/var/tmp/st.txtâ in my code â
> When visiting a website that is not shown in the transcript, the system falls
> back to use CSBuFLO scheme.

I see. Thanks for the references.

Building this code into a pluggable transport would be more work than I
had originally supposed. If there were a minimal network client and
server, only implementing the website fingerprinting defense, then I
wouldn't mind spending half a day to make them into a pluggable
transport. But as it stands, it looks like it will be more work,
essentially a reimplementation.

David Fifield
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Pluggable-transport implementations of your website fingerprinting defenses
  - From: David Fifield

Prev by Author: [tor-dev] Pluggable-transport implementations of your website fingerprinting defenses
Next by Author: Re: [tor-dev] Using Shadow to increase agility of Sponsor R deliverables
Previous by thread: [tor-dev] Pluggable-transport implementations of your website fingerprinting defenses
Next by thread: Re: [tor-dev] Running a Separate Tor Network
Index(es):
- Author
- Thread