[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] isp monitoring tor

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] isp monitoring tor
From: Roger Dingledine <arma@xxxxxxx>
Date: Mon, 6 Oct 2014 22:27:43 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 06 Oct 2014 22:27:54 -0400
In-reply-to: <N1-N69tjFsg5O@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <N1-N69tjFsg5O@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-12-10)

On Mon, Oct 06, 2014 at 07:02:06PM -0400, garyr22@xxxxxxxxxxxxx wrote:
> I'll read some documentation about these methods. Are there recommended sources?
> 
> > Tor is vulnerable to two general sorts of attacks.

I agree with the number two, but I would have picked different
attacks. The first is traffic correlation, which is the one discussed
in this thread. The second is website fingerprinting.

For the general background on Tor attacks, see
http://events.ccc.de/congress/2008/Fahrplan/events/2977.en.html
https://media.torproject.org/video/25c3-2977-en-security_and_anonymity_vulnerabilities_in_tor.mp4

For the traffic confirmation attack, see the links in
https://blog.torproject.org/blog/one-cell-enough

And for website fingerprinting, see
https://blog.torproject.org/blog/critique-website-traffic-fingerprinting-attacks
https://www.eecs.berkeley.edu/~sa499/papers/ccs-webfp-final.pdf

--Roger

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] isp monitoring tor
  - From: garyr22

Prev by Author: [tor-talk] (FWD) https://www.federalregister.gov/articles/2014/09/18/2014-22239/request-for-information-rfi-national-privacy-research-strategy
Next by Author: Re: [tor-talk] Tor Relay Smartphone App
Previous by thread: Re: [tor-talk] isp monitoring tor
Next by thread: [tor-talk] Stupid hidden services question
Index(es):
- Author
- Thread