[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] CA cert MITM vulnerability in Tor? (Was: hidden service on same location as public service)

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-talk] CA cert MITM vulnerability in Tor? (Was: hidden service on same location as public service)
From: Juenca R <juenca@xxxxxxxxx>
Date: Mon, 9 Jul 2012 13:07:27 -0700 (PDT)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 09 Jul 2012 16:06:58 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1341864447; bh=LJSbca87APqJT5Io4S3RoDiI6d8vw6r9gNgLaExUdcY=; h=X-YMail-OSG:Received:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=n+aT8tjSETnWePqViwMwaocuoXabMhdNGOaxTxWF1t5fBL0tfLqKc8ZNyaQnX7sNR8JEhGy0G31jgmM1fYeMgmLd3mxwlKPCEOxIgsHVNI2C915clxUi9+HgW+g7a8euAMVoOBGu8Rp+0hNp/OjDq/oaMvxDKINK0Lpvs2mD0kI=
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=JrZ+CcRm68sn8I9jMZKBO4SjYCkbAsc2XASQt974QDdGdUieIwi8Kkh+KR/OPU+XmdLsYrzckm+fEXgrmwv7wZ/CfZjJVW0YeOf4VnoMNIJgb0nD8fdsYbgt0GOkRM10QWqoRWyByWtGw5UpfQzlwTEiaUGykIup2MXU7DvjY+Q=;
In-reply-to: <df253d43d3795630d8efbbc746a1f984@xxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <1341788951.94936.YahooMailNeo@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> <df253d43d3795630d8efbbc746a1f984@xxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

>> also wondering if the use of hidden service like this will help fix problem
>> of man-in-middle attacks on SSL like here:
>>  
>> http://www.wired.com/threatlevel/2010/03/packet-forensics/
>>  
>> actually, does Tor's encryption fall victim to this?  if not, is HTTPS 
>> over
>> hidden service redundant?
> 
> While SSL root CA's have been compromised at least twice in past (Comodo, 
> DigiNotar), Tor's .onion have never been impersonated by breaking the 
> encryption. Some argue .onion domains are to short (weak hash) and the 
> encryption keys are to weak as well.

well I think that vulnerability is about using forged CA certs, no need to break the encryption.  there's also the null-byte trick in CA certificates that was discovered to forge CA certs to look legit.

so I wonder if Tor is susceptable to this or if Tor is a SOLUTION to this problem???

(if not accessing hidden service, traffic at the exit is still vulnerable but if access to hidden service, maybe a complete solution to this problem as long as Tor cant be hacked by this MITM trick?)
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] CA cert MITM vulnerability in Tor? (Was: hidden service on same location as public service)
  - From: coderman

References:
- [tor-talk] hidden service on same location as public service
  - From: Juenca R
- Re: [tor-talk] hidden service on same location as public service
  - From: proper

Prev by Author: Re: [tor-talk] hidden service on same location as public service
Next by Author: [tor-talk] HTTPS to hidden service unecessary?
Previous by thread: Re: [tor-talk] hidden service on same location as public service
Next by thread: Re: [tor-talk] CA cert MITM vulnerability in Tor? (Was: hidden service on same location as public service)
Index(es):
- Author
- Thread