[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
From: Ben Wilhelm <zorba-tor@xxxxxxxxxxxxx>
Date: Sat, 16 Feb 2008 12:38:24 -0800
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 16 Feb 2008 15:39:02 -0500
In-reply-to: <839947.65753.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <839947.65753.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.7) Gecko/20060909 Thunderbird/1.5.0.7 Mnenhy/0.7.4.0

Anon Mus wrote:

Ben,

Yes you are right factorising this is hard, but thats not what I've
beensuggesting. What if every time you generated a pair of keys you storedthe result somewhere!
Say you owned a huge network of say mil/gov computers which communicate

securely using sefl generated rotating keys. As any client finishes
witha key pair they send them off to a central storage location. If theyare not there already they are added to the store.
To find the private key(s) you only need to search through the list ofpublic keys. If you only find 1% of the server communities private keys
then you've got many extra nodes to add to your dummy network.

Hopefully you understand this and I'll get some sleep tonite ( :D ).

-K-

You're continuing to drastically underestimate the numbers involved.Let's say that a computer is a cube, one half foot on each side. Nowlet's take the Earth, and *cover the Earth with solid computers* to adepth of one mile. This gives us approximately 232 billion billioncomputers. If you assume that each computer can generate a thousandprivate/public pairs per second (I believe this is an exaggeration forcommodity hardware, though you could likely build a custom system to doso) then that means we get 2.32 * 10^23 keys every second.

I'm going to go handwavy here and assume that one key is approximatelyequal to one prime. This isn't true, but we'll end up within an order ofmagnitude of the right answer, and honestly more precision than thatisn't needed.

With 7.5127 * 10^74 primes, attempting to cover 1% of the keyspace at2.32 * 10^23 keys per second would take approximately one millionmillion million million million million million *years*. Excuse me fornot being particularly worried about this. And remember, this assumesthe entire surface of the planet is covered, a mile thick, withcomputers. Last I checked this was not the case.

(Again, this also ignores the issue of where you store all this data.)

Seriously, sit down and think about the numbers some. The numbers are*gigantic* - so gigantic that "brute force" becomes implausible, even ifyou assume the adversary owns all the government and corporations of ourworld and has access to alien supercomputers.

-Ben

Follow-Ups:
- Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
  - From: Florian D.

References:
- Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
  - From: Anon Mus

Prev by Author: Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
Next by Author: Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
Previous by thread: Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
Next by thread: Re: Compromised entry guards rejecting safe circuits (was Re: OSI 1-3 attack on Tor? in it.wikipedia)
Index(es):
- Author
- Thread