[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: end-to-end encryption question

To: or-talk@xxxxxxxxxxxxx
Subject: Re: end-to-end encryption question
From: coderman <coderman@xxxxxxxxx>
Date: Thu, 13 Sep 2007 15:44:41 -0700
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 13 Sep 2007 18:44:50 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=yTEodo+LXqDWjfSVA+vn9MioVOAAJcKkat68EbAb/F0=; b=PKG9yKZjSp+do3OTQXE+Q6/59DJ0tHeS4n0AjuUNFTiJGnivxvDi7JLatvOWc9kfDpYaUjcg0aw8C2HySHiep6MdrVIKRrkxO+XnYLzIzeWW5ixi8z/NMXpCfCRUJOZIvpuCU3CX8gttOwl09k3fmkQYTnVIsTAXMAdWX6QzfPk=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=cXz32mupYX0D7JNtzAhY8jh1Cn4qHW8Xx+lKAAS8GWalfSMx3amowPw8jAx076bDCRyI/rmvDdKbqVom0CBQSospMkJ7IbqR6NSAUqMiQnynX4DzSzHSjF8A9jJDXyhTPgOVuynkmFATjtiMvwiqmjEf6SzRhNw0nXs9lK6AAeg=
In-reply-to: <200709132226.l8DMQkFc001823@xxxxxxxxxxxxx>
References: <200709132226.l8DMQkFc001823@xxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 9/13/07, Scott Bennett <bennett@xxxxxxxxxx> wrote:
>...
>      Yes.  However, in the case of end-to-end encryption, the attacker
> would first have to have a way to know with which packets to tamper,
> which would mean the attacker would have to have cracked the tor system
> entirely.

please read a bit more about the Tor design and implementation.  it is
trivial to know if a client is trying to reach a directory authorities
or nodes caching directory information based on the router info
published.

>...  If the data in question travel all the way to their
> destination through a tor circuit, then they are encrypted, mingled
> with other tor traffic, and not obviously distinguishable from any
> other packets traversing the tor network.

you still need to bootstrap them into the network to be able to create
circuits this way.  see AllDirActionsPrivate and some of the new
bridge features recently developed.

best regards,

References:
- Re: end-to-end encryption question
  - From: Scott Bennett

Prev by Author: Re: How can I know my IP address geted by the website?
Next by Author: Re: a changing network security landscape is difficult for even the biggest tech companies to wrestle with
Previous by thread: Re: end-to-end encryption question
Next by thread: Re: end-to-end encryption question
Index(es):
- Author
- Thread