[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Sampled Traffic Analysis by Internet-Exchange-Level Adversaries
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Sampled Traffic Analysis by Internet-Exchange-Level Adversaries
- From: coderman <coderman@xxxxxxxxx>
- Date: Mon, 28 May 2007 03:36:05 -0700
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Mon, 28 May 2007 06:36:15 -0400
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Mjj+5UIk9cXJtx5oGy8DV7QcvBrQigO/SKK/u0b6T8jOlkiJOvqirg59aNA4913LQdt3cFLqhtmU2E3eWbN2DXPQSJHKGMCoFLuUwXX+C2xbTLDdxREdl5e+o6GsPiQUf0P3bTJrMgD8Yzc9kW74yas7FHYjMLFpZHHe2p01TbM=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=frFSKRhZL82piAZ8ZUMdbS4klwZK6UkegdYaWspeOeJHfohY8Zv3xUzd1nfJoveTu3eMQHlcQaX/WmvDe+sYNK0+Jnd9laW26NV7ISAtinaixPyiXMevpGjRw12sY+AsKmb9WfNJQoAjRSs+ix6DvUqdOtgv+xBkDqEGeTEnuso=
- In-reply-to: <20070528100048.GS7967@xxxxxxxxxxxxxxxxx>
- References: <20070528100048.GS7967@xxxxxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
On 5/28/07, Steven Murdoch <tortalk+Steven.Murdoch@xxxxxxxxxxxx> wrote:
... an experiment to establish how diverse the topology of the Tor network
is -- an important component of how secure it is against traffic
analysis. ...
I've now finished the draft version of the resulting paper...
http://www.cl.cam.ac.uk/~sjm217/papers/pet07ixanalysis.pdf
hi Steven; an enjoyable read. thank you!
i am curious about a few aspects.
you state "an assumption that the global passive adversary is
unrealistic". is this really true in anonymity research circles? it
seems the evidence to the contrary is well supported. i do prefer the
"those who are the target of such adversaries have larger problems
than anonymous Internet access" statement instead. :)
i am also curious if you had considered lower layer propinquity of
physical paths. critical infrastructure research has shown how even
seemingly disparate and redundant paths are often inhabiting common
right of way and facilities. is the assumption that inspection at
OC/WDM layers is too cumbersome/expensive for all but the previously
mentioned TLA/$gov adversaries?
given the surprises looking at network topology from an IX rather than
AS level, i'd expect a similar revelation when viewing from an optical
carrier vantage point.
sadly, the information useful for such study has become a subject of
heated and irrational censorship post 9/11. i'll stop this tangent
early before i delve into a heated rant about critical infrastructure
and terrorism madness... *g*
best regards,