[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] on the topic of tor's weaknesses

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] on the topic of tor's weaknesses
From: Chris Wheeler <grintor@xxxxxxxxx>
Date: Wed, 29 Feb 2012 10:19:48 -0500
Authentication-results: mr.google.com; spf=pass (google.com: domain of grintor@xxxxxxxxx designates 10.50.207.4 as permitted sender) smtp.mail=grintor@xxxxxxxxx; dkim=pass header.i=grintor@xxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 29 Feb 2012 10:20:34 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=meLKsqIAfE+/78+fHkstW+1Lymmrz5miBpTEQbW0dtE=; b=FYBgWkNeiH3NTgbT18eHoFB4jUC4ErnAMlpSZ805mbk83JxlZprdsIUz9prR7nNhPm eFOtUjt2lVAX6TodipXxuO18Jvj/8mQYFWdhoHWLoJpccnd/8BkvpxgBbDqtlGeDVGZU r4cZp1BNh0nfDKNC8FOqgu+Fo94AVMg/95/UA=
In-reply-to: <C3180BF1-59A6-4648-ABD1-C729826B93CB@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CANqgWRPcSA5U6Qyd7A-=jNk38AQQPN0Lz1sEgpnkC03NLWBJXQ@xxxxxxxxxxxxxx> <CAOCAFo7beSAFs5qsVuesuXE1n11gnMh3MdxNooU04RpHEWpZFg@xxxxxxxxxxxxxx> <4F49494F.3070308@xxxxxxx> <CAOCAFo5_zjvbGwbVSMKtByQP1kdLbgirt-11ih_09UZ6qNrAyw@xxxxxxxxxxxxxx> <CAOCAFo5AD6UU1VSokEovrz4yzwKpECrvfZhXV7p+sjbvid-KPw@xxxxxxxxxxxxxx> <CANqgWRNyJBLAraBvimYqnfpbM+NYmRHnGqKjOpsLVH1dODKm2A@xxxxxxxxxxxxxx> <CAOCAFo7bhwMsQciegCKRftf_wb07n8-7hw+eXsqTLr_e74Vc3Q@xxxxxxxxxxxxxx> <20120227061040.GA2343@xxxxxxxxxxxxxxxxxx> <CAD2Ti2_tt4vm3t4XMcn1K8BA+o8NTGy86Dd0a+=EM0sLT3ncYw@xxxxxxxxxxxxxx> <C3180BF1-59A6-4648-ABD1-C729826B93CB@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

OK, so taking that all into account, is it more likely that you will be
de-anonymized using public services through tor (ie browsing the web) or
using hidden services through tor?

On Wed, Feb 29, 2012 at 9:14 AM, Ralf-Philipp Weinmann
<ralf@xxxxxxxxxxxxxx>wrote:

>
> On Feb 29, 2012, at 11:17 AM, grarpamp wrote:
>
> >> The main problem, besides the overhead, is that padding doesn't work
> >> if an adversary can do something as trivial as very briefly delaying
> >> It is too easy for an adversary to put a traffic signature on a
> >> circuit in one place, and look for it elsewhere. If he owns, e.g., the
> >> first node and any of the last node, the link to the destination, or
> >> the destination it won't matter what kind of padding is done. There's
> >> lots of published work showing this in various ways. Some already
> >> alluded to in this thread. If nothing else the adversary can just kill
> >> the connection at the first node and see which connection exiting the
> >> network dies.
> >
> > Doesn't this mean bad news for users of hidden services, and to a
> > lesser extent clearnet services (since they're not as 'illegal' and thus
> > maybe lesser hot targets for snagging users). IE:
> >
> > Sting runs a HS and an entry. Thus Sting has full packets, timing,
> > cleartext and logs of anyone that builds: clientA <> entry <---> HS
> >
> > There may even be these additional structures to the left of clientA's
> > entry, for which the role of entry may switch to relay or exit, but for
> > which entry may be still able to discriminate among on its left...
> > clientB
> > clientC <> relay
> > clientD [...] <> relay <> relay [...]
> >
> > It may take a while for a clientA to use said entry but when they do it
> seems
> > it would be quite easy to time/count correlate or munge the HS traffic of
> > clientA. And only require two nodes (hs, entry) and no GPA taps to do so.
>
> That's why guards were introduced: They will not completely eliminate the
> above class of attacks, but at least make it statistically much less
> likely; since you will only use 3 out of 800 or so guard nodes per month.
>
> Cheers,
> Ralf
>
> _______________________________________________
> tor-talk mailing list
> tor-talk@xxxxxxxxxxxxxxxxxxxx
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
>
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: grarpamp

References:
- [tor-talk] on the topic of tor's weaknesses
  - From: Chris Wheeler
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Xinwen Fu
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Joe Btfsplk
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Xinwen Fu
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Xinwen Fu
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Chris Wheeler
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Xinwen Fu
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Paul Syverson
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: grarpamp
- Re: [tor-talk] on the topic of tor's weaknesses
  - From: Ralf-Philipp Weinmann

Prev by Author: Re: [tor-talk] how can I direct specific ports to tor?
Next by Author: [tor-talk] Tor bridge with no traffic
Previous by thread: Re: [tor-talk] on the topic of tor's weaknesses
Next by thread: Re: [tor-talk] on the topic of tor's weaknesses
Index(es):
- Author
- Thread