[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Weekly News — October 23th, 2013

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor Weekly News — October 23th, 2013
From: Joe Btfsplk <joebtfsplk@xxxxxxx>
Date: Thu, 24 Oct 2013 11:26:10 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 24 Oct 2013 12:41:11 -0400
In-reply-to: <20131023130459.GL13498@loar>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20131023130459.GL13498@loar>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.0; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.0.1

On 10/23/2013 8:04 AM, Lunar wrote:

Tor Weekly News                                       October 23th, 2013

“some circuits are going to be compromised, but it’s better to increase your
probability of having no compromised circuits at the expense of also
_INCREASING THE PROPORTION_ of your circuits that will be compromised if
any of them are.”

I read the paper -  slept since then.

Would someone please clarify this general statement & that part of thedesign concept?

The statement in https://www.torproject.org/docs/faq#EntryGuards is abit confusing./"But profiling is, for most users, as bad as being traced all the time:they want to do something often without an attacker noticing, and theattacker noticing once is as bad as the attacker noticing more often."/

How is being "noticed" once, perhaps for 15 seconds, visiting onewebsite - that yields very little info, better than being noticed manytimes, over a long period?

Is it that once an adversary correlates your machine (fingerprint) w/ anoriginating IP & a Tor entry / exit, they could theoretically ID you?

If so, doesn't that beg the question of why does TBB keep the samebrowser fingerprint from entry to exit?Why (have or allow TBB to) keep the same fingerprint over long periods,even if some of that data is spoofed, rather than TBB randomly change(spoof) the fingerprint, from end to end on one circuit and / or over time?

One big problem as I understand, is a Tor user (specific browser onspecific machine) is potentially identifiable from entry to exit, byhaving the same fingerprint.Why not change the fingerprint? Put on a "hat & glasses" or "differentcolored coat" part way through the circuit? TBB already spoofs SOMEbrowser data - it just remains constant. Maybe other tracking issuescompletely over shadow this.

Even if having TBB change fingerprints along a circuit and / or at othertimes doesn't solve all problems, could it be a *part* of reducingfingerprinting and / or tracking?


--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor Weekly News â October 23th, 2013
  - From: author
- Re: [tor-talk] Tor Weekly News — October 23th, 2013
  - From: Michael Wolf

References:
- [tor-talk] Tor Weekly News â October 23th, 2013
  - From: Lunar

Prev by Author: [tor-talk] TBB prefs_prompt to sanitize on shutdown?
Next by Author: Re: [tor-talk] Tor Weekly News â October 23th, 2013
Previous by thread: [tor-talk] Tor Weekly News â October 23th, 2013
Next by thread: Re: [tor-talk] Tor Weekly News â October 23th, 2013
Index(es):
- Author
- Thread