[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Question for those who say "Tor is pwned"

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Question for those who say "Tor is pwned"
From: Aymeric Vitte <vitteaymeric@xxxxxxxxx>
Date: Wed, 22 Jun 2016 12:47:43 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 22 Jun 2016 06:48:05 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-transfer-encoding; bh=eSqCFETbNNqnqED7FtE/7qmJN9o2D5jWpQYfmsJa26A=; b=qtN8cmCBwtzJgTxmmdcSC9ukNJrL/j5Cx+eG0E/oEo32Q2TFTiYVvCMuD20CNVft8Q tqDAmnHp+ZGyNo/0/o7UonbKjkkLS/BNae4eJvZ7Gtm6E1jvIOoZql9uKTScBcfx6QDW S6Nj+2eJ4i56YchK+70PLDk3Jl/w63NAhIJ6mons7X6US4KqpFhYQp6PznHQ+keR2mar pEazMlRHRPhV90SjlGZH3kL8RBGaiOIpIJlMpW1qpZeWDTAWlBggfHmtycXC1N9dvfio 0zB5MTe7qLDr6ZrD9ZFlywqIVCAA7cTQw6Fi897TgGao0r7S66AzSRV8wjOOE35hvwDu UjEg==
In-reply-to: <20160621164838.GC4418@xxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <82802cd6-e80a-5fdc-4b17-6d89fac1dfe7@xxxxxxxxxxxxxxx> <57687d86.8e63370a.a7ab0.21c9@xxxxxxxxxxxxx> <7d8592cc-4000-7438-8dac-38d3b20d7f98@xxxxxxxxxxxxxxx> <576887d0.564d370a.8e5ba.0e9f@xxxxxxxxxxxxx> <20160621012553.GA68349@xxxxxxxxxxxxxxxxxxxxxx> <5768abc1.8d38c80a.1d4f8.23b7@xxxxxxxxxxxxx> <20160621041939.GA84886@xxxxxxxxxxxxxxxxxxxxxx> <ece45e3c-b9a7-3ac6-02e5-60dd98f58723@xxxxxxxxx> <20160621164838.GC4418@xxxxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.3; rv:45.0) Gecko/20100101 Thunderbird/45.1.1

Thanks, will keep this in mind

The question was the one in the link provided below regarding potential
research exploring some ways to defeat trafic correlation splitting the
Tor circuits (maybe somewhere similar to your semi-synchronous concept)


Le 21/06/2016 Ã 18:48, Paul Syverson a Ãcrit :
> On Tue, Jun 21, 2016 at 01:28:12PM +0200, Aymeric Vitte wrote:
>>
>> Le 21/06/2016 Ã 06:19, Paul Syverson a Ãcrit :
>>> We published a design in 2010 that essentially turns a
>>> solution against a passive adversary into a solution against an active
>>> adversary. It had some nice theoretical properties, but I don't think
>>> it was practical. These haven't been ruled out. There is ongoing
>>> research, but so far none of it has looked adequately useful in practice.
>> Probably you are referring to the paper mentioned in
>> https://lists.torproject.org/pipermail/tor-talk/2016-June/041192.html
>> which indeed as I commented does not look realistic to implement, then I
>> suppose that the answer to my question is no
> Yes that paper. Not sure what the question is.
>
>>> I think there are some things we maybe could do with mixing and
>>> synchronization to raise the bar at least a little against a _passive_
>>> adversary. I have told many researchers my thoughts about this, but so
>>> far nobody has taken it up that I know of. I would like to look into
>>> it myself, but I already have a many-years backlog of more important
>>> (more likely to make a real difference IMO) research questions to
>>> answer.
>> Would be interested to know what are those thoughts (on or off the list)
>> and/or get possible links to them
> Well there's things like alpha-mixing (better tau-mixing) as that
> could be used to blend and improve security for traffic of different
> sensitivity levels _if_ it can adequately avoid leaking how
> paranoid/sensitive different traffic is. Various proposals following on
> those lines have been floated, but this needs a lot more analysis to
> see how/if it would make sense.
>
> Another thought I've raised to a bunch of people for at least 2-3
> years is the idea of semi-synchronous building of Tor circuits. Since
> most circuits are built pre-emptively it should be relatively easy to
> implement and shouldn't cost much in overhead if all relays, e.g.,
> batched and fulfilled all extension requests they received in the last
> say 2 seconds, effectively timed mixing of circuit building
> cells. This might make it hard for a widescale passive network
> observer to trivially identify circuits simply from the building (as
> Bauer et al. first explored at WPES 2007).  They would then have to go
> into the relayed traffic.
>
> Questions include, how much extra work does this really create for the
> adversary? (It doesn't appear to have much overhead, but if it has
> even less useful effect, it's not worth it.)  What to do when circuits
> are not available (Do you just say screw the delay for those, or bite
> that bullet which implies driving a nontrivial fraction of users to
> less secure options)? How often _are_ circuits not available
> pre-meptively? Does this somehow disproportionally affect a
> particularly sensitive class of traffic?  I'm assuming you don't want
> to actually synchronize relays here as I could imagine all kinds of
> weird congestion effects.  Even if you don't one should do lots of
> Shadow experiments or some such (after the prior questions make it
> seem worth doing them) to make sure these effects aren't induced
> anyway...
>
> aloha,
> Paul

-- 
Get the torrent dynamic blocklist: http://peersm.com/getblocklist
Check the 10 M passwords list: http://peersm.com/findmyass
Anti-spies and private torrents, dynamic blocklist: http://torrent-live.org
Peersm : http://www.peersm.com
torrent-live: https://github.com/Ayms/torrent-live
node-Tor : https://www.github.com/Ayms/node-Tor
GitHub : https://www.github.com/Ayms

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Question for those who say "Tor is pwned"
  - From: Anthony Papillion
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: juan
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: Anthony Papillion
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: juan
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: Paul Syverson
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: juan
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: Paul Syverson
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: Aymeric Vitte
- Re: [tor-talk] Question for those who say "Tor is pwned"
  - From: Paul Syverson

Prev by Author: Re: [tor-talk] Question for those who say "Tor is pwned"
Next by Author: Re: [tor-talk] Design of next-generation Tor systems
Previous by thread: Re: [tor-talk] Design of next-generation Tor systems
Next by thread: Re: [tor-talk] Question for those who say "Tor is pwned"
Index(es):
- Author
- Thread