[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Illegal Activity As A Metric of Tor Security and Anonymity

On Sun, Jun 29, 2014 at 4:53 PM, Mark McCarron <mark.mccarron@xxxxxxxxxx> wrote:
> ...
> We already know from the Snowden releases that the physical infrastructure for this is in place.  That it spans at least 33 nations covering all major fiber links.  Within the US, all traffic is copied verbatim at major exchanges.  In other nations, metadata can be shared to complete the picture.

this is just one part of a series of costs; how much raw DPI capacity
(it is finite)? how much memory/storage for backtrace to some hours
window? 30day window? how much engineering time (earth human hours) to
implement the collection, classification, and analysis of all flows in
daily time? in near-real-time (<60sec)? how is accuracy beyond doubt
identified? how much does additional accuracy in shorter time cost?

> We know that the physical infrastructure and regulatory frameworks are there, thus that must be going somewhere and as its metadata, that implies traffic analysis.
> So, its a patchwork model and the costs are spread across many nations and information sharing to isolate sites is policy driven.

you trivialize too much; over and under estimate.  justify the costs
you quantify in detail - what you throw around above betrays a lack of
understanding of the constraints of collection at global scale.

as i keep restating another way, no matter how many times you call it a cop out:
  if global traffic analysis against Tor is expensive, the ability to
pwn every endpoint with rare exception so cared about, using Tor or
not, is cheaper - your reasonable adversary will do that!
 ... more value for less money.

(this is perhaps one of the more interesting details to emerge across
the Snowden leaks - the technical constraints and evolution of the
offensive platform (TAO) and the scale (SSO/GAO) of the technical
processes (QUANTUM*/TURB*|TURM*) applied and where the most resources
are applied year over year.)

last but not least, please note that i am in Paris for the drinking
chocolate.  ;)
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to