[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] End-to-end correlation for fun and profit

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] End-to-end correlation for fun and profit
From: The Doctor <drwho@xxxxxxxxxxxx>
Date: Tue, 21 Aug 2012 15:19:16 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 21 Aug 2012 15:18:34 -0400
In-reply-to: <CAMtFrUGbK71H3=4G=drad3T6muDiQowoCWsk96zs+xt3Ajn-EA@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Openpgp: id=807B17C1
Organization: Virtual Adept Networks, Unlimited
References: <1T3Maj-000OXH-U1@xxxxxxxxxxxxxxxxxxxx> <1T3RPw-0000k5-Oc@xxxxxxxxxxxxxxxxxxxx> <5033C3AF.30605@xxxxxxxxxxxx> <CAMtFrUGbK71H3=4G=drad3T6muDiQowoCWsk96zs+xt3Ajn-EA@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:14.0) Gecko/20120717 Thunderbird/14.0

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/21/2012 01:30 PM, Runa A. Sandvik wrote:

> From
> https://gitweb.torproject.org/torspec.git/blob_plain/HEAD:/path-spec.txt:
>
> 
"We do not choose more than one router in a given /16 subnet (unless
> EnforceDistinctSubnets is 0)."

So, seeing as how this is the case (verified from the Git repo for
those who are interested), I have my doubts about how relevant the
"Control X number of /'s" attack against users of the Tor network is.
 It stands to reason that of all of the /24's that make up a
particular /16, only one IP address in that entire space might be
utilized for a given circuit.  That suggests that an attacker won't
get nearly as much information with this attack as it seems.  It's
still worth noting, however.

- -- 
The Doctor [412/724/301/703] [ZS]
Developer, Project Byzantium: http://project-byzantium.org/

PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F  DD89 3BD8 FF2B 807B 17C1
WWW: https://drwho.virtadpt.net/

"The system of teaching is the teaching of the system." --Guy Debord

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlAz3zQACgkQO9j/K4B7F8EetgCg6XbHsyZuWw0BmQTSLfxLwekr
sMwAn0apeLHG8aCrlTHcm/ID6wWcDLYa
=4GMC
-----END PGP SIGNATURE-----
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] End-to-end correlation for fun and profit
  - From: fakefake
- Re: [tor-talk] End-to-end correlation for fun and profit
  - From: The Doctor
- Re: [tor-talk] End-to-end correlation for fun and profit
  - From: Runa A. Sandvik

Prev by Author: Re: [tor-talk] End-to-end correlation for fun and profit
Next by Author: Re: [tor-talk] End-to-end correlation for fun and profit
Previous by thread: Re: [tor-talk] End-to-end correlation for fun and profit
Next by thread: Re: [tor-talk] End-to-end correlation for fun and profit
Index(es):
- Author
- Thread