[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
From: Alec Muffett <alec.muffett@xxxxxxxxx>
Date: Wed, 30 Aug 2017 12:15:43 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 30 Aug 2017 07:16:41 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=ORn/b7lbkhRGMnMczhuYkd/LJV89gIFKxktJSXHo8jw=; b=CjmERvY+xCu+8h5ZkTBb+iF0gCi5bvOPMicFpnTmNTFBiDx4Rk5Sdfr6gBXMD+Knk3 QetySEPP3n8IbvaI/VmQU+fK1uLc0J6Hip9pcDlNsrpxxDnBw1KMdB3C0A0fccvpKunP fvuDU2hdn8BcX4h5zdSD/k5Xzr0lsDXAQ66a+JXgVO5PLsiG10PNVcb9SvUCaNAfWVet n5uK09Fw8sEs5ziia8js0R9AG7Y8qTfy9ACTDXqK/3XdwEa+5fB0bC7G1ZIWd2eNHuDv 1Hvd6IvhYHhL4rhvCprU224+bBLETgPzfO/PU1vZ9nazZRWV1J3A4fOSPPe6yappjIqD THYQ==
In-reply-to: <CAPkfgVZDzMJq9z0i+ygQs+=wdhp+mx755iLSL=99YF6-W=Q6rA@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAPkfgVZDzMJq9z0i+ygQs+=wdhp+mx755iLSL=99YF6-W=Q6rA@mail.gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On 30 August 2017 at 10:51, Jon Tullett <jon.tullett@xxxxxxxxx> wrote:

> Blog post refers:
> http://www.hackerfactor.com/blog/index.php?/archives/773-
> Tor-and-the-Perfect-Storm.html
>
> Leaving aside the accusations of bias in the first part, what is the
> view of the proposal to force hidden services to rotate addresses?
>

Simply, it's as short-sighted as any other perspective that sees Onion
networking as an anonymity tool, rather than as a better-than-mere-TCP+SSL
mechanism for providing communications privacy, integrity, availability and
assurance.

In case those terms need spelling out:

- onions provide circuit-level privacy on-par with the likes of VPNs, but
without the setup hassle.

- ditto, providing integrity at the circuit level, thereby inhibiting the
likes of (say) "sslstrip"

- availability of a service; I'm finding it interesting to consider that
the TCP/IP Internet requires the existence of companies (mentioning no
names) to provide DDoS mitigation, but sites which set up with Onion
addresses are getting comparable levels of DDoS mitigation for free*. Tor
blockproofing and (importantly) Onion DDoS-protection is pretty good.

- assurance: if you can type in the (static) Onion address, you know
immediately with whom you are communicating.

Proposals to undermine these qualities in the name of $GOAL are on-par with
Law Enforcement demands for "golden keys" to undermine the integrity of
end-to-end encrypted conversations**.

Practical example: the point of the Facebook onion site is to provide the
above-listed four benefits - plus a better quality of service - to people
who choose to access Facebook over Tor; the point is to free the
communications path from mediation of any form. To see this as a threat, or
to argue that "well maybe $THIS_SITE is okay, but $THAT_SITE should not be
afforded such protection" - is to call for censorship.

    - alec

*For a Twitter thread in this vein:
https://twitter.com/AlecMuffett/status/899521422774722564

**For more on this thesis:
https://medium.com/@alecmuffett/tor-is-end-to-end-encryption-for-computers-to-talk-to-other-computers-34e41d81c9e2

-- 
http://dropsafe.crypticide.com/aboutalecm
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
  - From: Jon Tullett

References:
- [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
  - From: Jon Tullett

Prev by Author: Re: [tor-talk] Is DNS required to connect to an entry node?
Next by Author: Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
Previous by thread: Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
Next by thread: Re: [tor-talk] Neal Krawetz's abcission proposal, and Tor's reputation
Index(es):
- Author
- Thread