[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: 27C3 on Tor

To: or-talk@xxxxxxxxxxxxx
Subject: Re: 27C3 on Tor
From: Roc Admin <onionroutor@xxxxxxxxx>
Date: Tue, 28 Dec 2010 22:09:07 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 28 Dec 2010 22:09:15 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=jt+YCrj1JD6bItioMtqut0GkFoj6LIe+MNXDAU+mx8w=; b=UztzqoBFDBlGcN+UeAdZIOklIQAx2SsvxC2lZtc2WzhM8QuoSubaY7f7r0RmsU5WPm k4kka9vBOjeEEGu/i+YOfEREAKQc3FcP73K5GYZMFOuYvSWn1EKNApWlX3mdvgxj3+Io RLyN69B1uKD7Zm90xW0J1tAzYgHkGSIbsNbKA=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=QOnBWU7zO1Z8WRRj2PiSzv2OHYM1J7H1xFS+Zrt8pibwuvD05jUCd1lLv/SiSL4eRe JIJckNaHZ2mwBZGFx629ffVhduU5CHx3DjgddlpVxKP8+ABqzWzyo2VJG5/S3FeQhqiA KPg/y0ztr7s6jr92xOTxfPXusGHMzSVsu6NSc=
In-reply-to: <AANLkTikTxOSNX_h6a8-MwbwjX6J1vRsqBPx-k-2ykiUs@xxxxxxxxxxxxxx>
References: <20101228190754.GJ16518@xxxxxxxxx> <AANLkTi=9b_-sQYkn4WqfagrtH_7C53r_DkDxVA0GOwB9@xxxxxxxxxxxxxx> <AANLkTikTxOSNX_h6a8-MwbwjX6J1vRsqBPx-k-2ykiUs@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Found the presentation at least and watching it now.  You have to skip
to 3:30 for the actual presentation.

http://www.youtube.com/watch?v=crMInOosdBk&feature=related

--
ROC Tor Admin

On Tue, Dec 28, 2010 at 8:51 PM, Nick Mathewson <nickm@xxxxxxxxxxxxx> wrote:
> On Tue, Dec 28, 2010 at 8:27 PM, Roc Admin <onionroutor@xxxxxxxxx> wrote:
>> This doesn't seem like much of a flaw as it is a design decision. See
>> https://trac.torproject.org/projects/tor/wiki/TheOnionRouter/TorFAQ#Youshouldsendpaddingsoitsmoresecure.
>> I'm not trying to dismiss the researcher but maybe someone can give
>> some insight into how critical this is to the Tor project and what
>> avenues for remediation there are if any. Anyone have a video of the
>> presentation?
>
> From the wired.com article, this sounds _exactly_ like the old website
> fingerprinting attack, which has been known since 2002:
>    http://freehaven.net/anonbib/#hintz02
>
> It would be neat if somebody could send a pointer to the authors'
> actual results.
>
> --
> Nick
> ***********************************************************************
> To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
> unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/
>
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: 27C3 on Tor
  - From: Mike Perry

References:
- 27C3 on Tor
  - From: Eugen Leitl
- Re: 27C3 on Tor
  - From: Roc Admin
- Re: 27C3 on Tor
  - From: Nick Mathewson

Prev by Author: Re: 27C3 on Tor
Next by Author: Re: 27C3 on Tor
Previous by thread: Re: 27C3 on Tor
Next by thread: Re: 27C3 on Tor
Index(es):
- Author
- Thread