Re: [tor-talk] Avoiding DoS inside the Tor network (Was: Anonymous to attacks Hidden Wiki and othershiddenservice)

[Eugen Leitl <eugen@xxxxxxxxx>]

On Mon, Oct 24, 2011 at 02:40:26PM +0200, Jeroen Massar wrote:

> If you would introduce something like hashcash, does the source node or
> the intermediate node have to do this hashcash calculation?

Like in BitCoin, only at minting stage would you need to generate
payment tokens. In fact, the tokens could be generated by Tor
developers themselves as we implictly trust them when we verify
the signed code on official released packages. This would do at
least initially.

The problem would be with overhead of network tracking transactions
to prevent double spending. That would be probably prohibitive, as
currently BTC tranactions take some time to clear. It's probably a
stupid idea.

> I do hope that verifying the hashcash is then factors lighter than
> generating it. Do note though that some

Verifying is easy, preventing double spending without centralism
is hard.
 
> If the source has to do it you are going to transfer a bit of text from
> the source to the intermediary node and thus the intermediary node might
> learn that way what the real source is.

The idea is that you have to spend some tokens if you want to push
a lot of data (or else there would be backpressure/throttling), which 
you would have to earn by being a good relay or exit. 
 
> I don't think this is very viable, even though it has merit, I would
> say, change the subject line and go for a proposal and we'll see how far
> it can solve something.

-- 
Eugen* Leitl <a href="http://leitl.org";>leitl</a> http://leitl.org
______________________________________________________________
ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org
8B29F6BE: 099D 78BA 2FD3 B014 B08A  7779 75B0 2443 8B29 F6BE
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk