[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor source code

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor source code
From: Seth David Schoen <schoen@xxxxxxx>
Date: Thu, 8 Jun 2017 12:49:13 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 08 Jun 2017 15:49:36 -0400
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=eff.org; s=mail2; h=In-Reply-To:Content-Type:MIME-Version:References:Message-ID:Subject:To:From:Date; bh=27waLhGHS09CUOXGB2mr1R7mGNoDQfzz1JTAZXHi5BM=; b=GRYqoCHOp/Qkg9JNBXtA1NeqYo8cwlzkMghbO0JopgCWWRvh55Fir9lE3TwmkShWXc10ZFyqyxpQaws9IpyHXtUB8DkpEhLy+oCQQHzdNAwQmxa7TMI/jM5D7rHnDUIg4T6Wgxml3zaoA9YDwyvVqyWjzp2RSN4GyHvL7SbF7sw=;
In-reply-to: <20170608193727.GB2963@demorgan>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAL+9+aZJj+EiDQBbfSYd37S60GfxNZOpGm8VtV6T8TtESEnvnA@mail.gmail.com> <CAL+9+aaE4_Y3SGf=uRbCnRmzVboyjCfy=j81+hA8nUer4O6BbQ@mail.gmail.com> <CAL+9+aaytn6nyQoF8exYHcNqcX-Rwz1JnY4L9nP_-BQJtmt6sw@mail.gmail.com> <CAL+9+aZf3gYZbaRGCRXG-sEBvbC-xRv17UNKsO7W5kyM1v26kg@mail.gmail.com> <CAL+9+aZ1t=1_L46c5Phg7fC6yf0xxaRsMBHcUQO17TwcTS+jQA@mail.gmail.com> <CAL+9+aae0a1aNeQnEcED8P00doE4Gb15Z=Yt3HOEt-iUxDCYAA@mail.gmail.com> <20170608193727.GB2963@demorgan>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.24 (2015-08-30)

By the way, there's an interesting new study

https://www.ieee-security.org/TC/SP2017/papers/84.pdf

that claims that many people believe communications security is "futile"
because of inaccurate mental models of cryptography, and strongly
endorse security through obscurity.

I've been thinking a lot about these results (it's worth reading the
paper) and one way that I've been trying to conceive of it is that the
research showed that many participants thought that the developer of a
security technology must, inherently, always know how to crack or
defeat that technology.  This might be true at a technical level if
encryption always worked like a substitution cipher, where there is no
secret key but knowledge of the details of the cipher is equivalent to
knowing how to crack it, or if public key cryptography didn't exist,
so that many-to-many communications required trusted authorities to
distribute key material.

Participants in that study did not tend to feel that encryption software
ought to be open source because they seemed to believe that the
developer of a security tool inherently, so to speak, knows the code
and can always use that knowledge to break users' security.  In this
model other motivated attackers will gradually also learn the secret
knowledge that they need to break the system, but disclosing technical
details of how it works would be an especially bad idea because it would
greatly speed up the process for the attackers.  (Then security through
obscurity is understood to be the only possible form of security.)

The study suggests that an important challenge for developers of security
systems may be finding a way to communicate how security need not depend
on obscurity, and also need not depend on trusting inventors of security
systems to keep secrets.

-- 
Seth Schoen  <schoen@xxxxxxx>
Senior Staff Technologist                       https://www.eff.org/
Electronic Frontier Foundation                  https://www.eff.org/join
815 Eddy Street, San Francisco, CA  94109       +1 415 436 9333 x107
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor source code
  - From: Suhaib Mbarak
- Re: [tor-talk] Tor source code
  - From: Seth David Schoen

Prev by Author: Re: [tor-talk] Tor source code
Next by Author: Re: [tor-talk] tor-talk Digest, Vol 77, Issue 9
Previous by thread: Re: [tor-talk] Tor source code
Next by thread: Re: [tor-talk] Tor source code
Index(es):
- Author
- Thread