[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] privacy of hidden services

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] privacy of hidden services
From: Ivan Markin <twim@xxxxxxxxxx>
Date: Fri, 23 Dec 2016 22:12:00 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 23 Dec 2016 17:13:43 -0500
In-reply-to: <CAB7TAMmy7w648uQ5ufNfFoWrgmX7s2C=TaGYF5qf4x8QKuGSJQ@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAB7TAMmvsNdzFtj6fUERo11hEipn22ELwueW0Y7GAbyYFP9C1Q@mail.gmail.com> <185296640.7FXMpBWCB2@home> <20161221185842.2jq43os7gizncse5@raoul> <CAB7TAMmy7w648uQ5ufNfFoWrgmX7s2C=TaGYF5qf4x8QKuGSJQ@mail.gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Yes, this is correct. Some remarks:

Allen:
> To summarize, the info leakages for HS that do not use authorization are:
> 
> - World at large can discover onion address using various directory
> enumeration techniques.
> - HS directory can track HS descriptor uploads and downloads and tie
> those to the onion address.

Not just "tie". It stores descriptors in which public key is set
explicitly (HSDir checks the signatures).

> - Intro point can track HS connection attempts and relate them to onion address.

Intro Point don't have an onion address per se (passive attacker). So
this should be rather
"Intro point can track HS connection attempts but only relate them to
the ephemeral service key for the duration of the key."

An IP should connect back to the service (using onion-key) to _maybe_
find out onion address, or fetch known descriptors and look there for
itself.

> For HS's that use basic authorization:
> 
> - World at large can discover onion address.
> - HS directory can track HS descriptor uploads and downloads and tie
> those to the onion address.
> - Intro point can track HS connection attempts but only relate them to
> the ephemeral service key for the duration of the key.
> - Authorized users who operated an intro point could track HS
> connection attempts through that intro point.
> 
> For HS's that use stealth authorization:
> 
> - Each authorized user uses a different effective onion address.
> World at large can discover each of those onion addresses, but can't
> relate them to each other.
> - HS directory can track HS descriptor uploads and downloads for each
> individual onion address, but can't relate them to each other.
> - Intro point can track HS connection attempts but only relate them to
> ephemeral service key for the duration of the key.

--
Ivan Markin
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] privacy of hidden services
  - From: Allen
- Re: [tor-talk] privacy of hidden services
  - From: Aeris
- Re: [tor-talk] privacy of hidden services
  - From: David Goulet
- Re: [tor-talk] privacy of hidden services
  - From: Allen

Prev by Author: Re: [tor-talk] Multiple 404 ("Not found") when trying to fetch certificates for authorities
Next by Author: Re: [tor-talk] Not comfortable with the new single-hop system merged into Tor
Previous by thread: Re: [tor-talk] privacy of hidden services
Next by thread: Re: [tor-talk] privacy of hidden services
Index(es):
- Author
- Thread