[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: leaker-optimized versions of Tor

To: or-talk@xxxxxxxxxxxxx
Subject: Re: leaker-optimized versions of Tor
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Wed, 8 Dec 2010 10:50:18 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 08 Dec 2010 10:50:26 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=6QD6g3C+ZImHrdit5OZhW+UjY3fV1fnIKvVlKh8kUTk=; b=hUrWOTNjz47L0PPCzpHjcXHfi7kzWZvI3Cfj35mwVOLJlmoxnrDMgpg1F66wRat2bH a0uELVE5PQs9Uh127db+iu+QyDwa1RcNyvYm765DR2S4FI+wOEolR6x+xlcY1MP4Hd7y yN4CqiasY0AvpSP5s/67klQOS5soOX796GGF0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=xQMs/MFOMf5yXcuOb/DzwA1zngBxc9c2WbaIa2ztzBYaL5dW/b8zOz1ikDJ3m34q/x m04VHfrfYh78g/XCFpzkE518VhAknS90NXUQwc0GKGM7uwj3vNow3Elib66gsaLC1cid fOHWt3AlZxGtG4ksRT1Af3QnjbnJrUZBb7bO4=
In-reply-to: <AANLkTimaoguYUJ6jeKjgO3MX7eKqAeJ-8x6nghirADA8@xxxxxxxxxxxxxx>
References: <20101208131708.GI9434@xxxxxxxxx> <AANLkTi=czR-kbn8n1SaWJmdCqXi7z69FCe4Q8_vSL03f@xxxxxxxxxxxxxx> <20101208143005.GN9434@xxxxxxxxx> <AANLkTimaoguYUJ6jeKjgO3MX7eKqAeJ-8x6nghirADA8@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On Wed, Dec 8, 2010 at 10:11 AM, Mitar <mmitar@xxxxxxxxx> wrote:
> Hi!
>
>> Relaxing the realtime constraint, adding random delays, more
>> hops and also chaff trafic in a Tor derivate would arguably
>> make such attacks more difficult.
>
> I am asking just about more hops. Why would more hops be necessary? It
> is enough that one node introduces random delay and this is it?

It is strictly necessary that the bad guy not control 100% of the
forwarding nodes.

On a realtime onion network anonymity is bounded by timing attacksâ
even if you could tolerate the delay of having a zillion middle nodes
the attacker could just watch the entrances an exits and correlate
timing. So adding a great many hops would not significantly increase
security.

A mix network can tolerate higher delays and, hopefully, eliminates
the timing attacks. So additional hops can be beneficial.

The down side is increased vulnerability to DOS attacks if flooders
can generate cheap round-the-world messages.

The creating a hidden service based overlay network, as was suggested
here by Karsten N., was what I thought when I read the threadâ but I
was concerned that if the network identity of all/most of the nodes is
hidden that an attacker could spin up thousands of fake mix nodes
without even needing a lot of network resources. They could make it
far more likely that all your hops were controlled by one party.
Although the risk exists for non hidden service based designs, it's
probably much easier with an anonymity layer in between. Any design
using hidden services would specifically need to address this risk.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

References:
- leaker-optimized versions of Tor
  - From: Eugen Leitl
- Re: leaker-optimized versions of Tor
  - From: Mitar
- Re: leaker-optimized versions of Tor
  - From: Eugen Leitl
- Re: leaker-optimized versions of Tor
  - From: Mitar

Prev by Author: Re: Tor & Email?
Next by Author: Re: Adding voip to torchat
Previous by thread: Re: leaker-optimized versions of Tor
Next by thread: Re: leaker-optimized versions of Tor
Index(es):
- Author
- Thread