[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Fri, 4 Jul 2014 16:05:29 -0400
Cc: cypherpunks@xxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 04 Jul 2014 16:13:43 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=LEr1XItdD1YxOrezFxQXSfkV5Mkly4RbVKbPlJ7dB14=; b=mMfT/5NGOfJoVBtQi0NhO44k25RmCGNW+F8QFfijnAi9+jC8uSOTIFqCzywMtnBVb9 i256xijro1lIonmOyYas0ZtVDiVDEiQlo751OiXp6YrvlF+4w1OvM/jDyGj0gaCYhkFM qED/aN9js49/7u7NZIXueghOdVAYJVoid2iWGZ7urrIhC4DFHCMrpmRrxn/SwyAvnLQv xnN+2kG2Gr70Mfn1JyI6FKtGLisMe/e276AL2FWfUSlyiNBcIg36VBh8O0VqmlcQdnhO UoJwMNKu3bKH6IFgRwbKSDjcqRgsF0g9Ywym3LYuErfgaIOPH5rQ7p3hRxNrPmU/42q9 EB8A==
In-reply-to: <53B69AE6.80102@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAD2Ti28UgXbB6wEry3VZjaWg4-8j7Ddi6stAfP7y+DrXWQn-0A@xxxxxxxxxxxxxx> <53B69AE6.80102@xxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Fri, Jul 4, 2014 at 8:15 AM, Nathan Andrew Fain <nathan@xxxxxxxxxx> wrote:
> "Trawling for Tor Hidden Services: Detection, Measurement,
> Deanonymization"
> Alex Biryukov, Ivan Pustogarov, Ralf-Philipp Weinmann
> http://www.ieee-security.org/TC/SP2013/papers/4977a080.pdf
>
> the two seem very similar. in the case of the paper linked amazon
> services were utilized. or perhaps someone can explain where the two
> research groups differ?

Yes, clearly an extension, optimization, or new work along the lines
of the above paper.

Perhaps more interesting is this dilemma...

> https://lists.torproject.org/pipermail/tor-talk/2014-July/033693.html
> "They wanted a NDA, so most Tor Project's core contributors don't know
> what's in the air."

So we have at least one core person who knows. Now assuming this
presentation [1] is in fact 'Really Bad News' for, at minimum,
Hidden Services... will the details of it be leaked in order to
'save' HS operators/users before CERTs/GOVs/LEAs/Vigilantes/Spies
and the thought police have time to get at them (or what unexposed
elements still remain of them)?

This is premised upon CERT's typical cozy relationships with LEA's,
naturally leading to sharing with them what are potentially ...

'tested ... in the wild ... dozens of successful real-world
de-anonymization case studies, ranging from attribution of'

... really diskliked things. Particularly cases of human harm
where it is only natural to seek intervention.

Then there are the cases worthy of every possible protection outlined
here...
https://www.torproject.org/about/torusers.html.en

Therein lies the dilemma. What do you do?

[Note that even if the above relationships, or desire to intervene,
do not exist... said spies and their actors are likely to monitor
the full research details, and know who in the public knows as well.
This could lead to shorter time constraints on all sides.]

[1] Which I forgot to link in the OP, thanks Matthew.
https://www.blackhat.com/us-14/briefings.html#you-dont-have-to-be-the-nsa-to-break-tor-deanonymizing-users-on-a-budget
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000
  - From: grarpamp

References:
- [tor-talk] BlackHat2014: Deanonymize Tor for $3000
  - From: grarpamp

Prev by Author: Re: [tor-talk] messing with XKeyScore
Next by Author: Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000
Previous by thread: Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000
Next by thread: Re: [tor-talk] BlackHat2014: Deanonymize Tor for $3000
Index(es):
- Author
- Thread