[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #5968 [Tor]: Improve onion key and TLS management

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #5968 [Tor]: Improve onion key and TLS management
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 10 Apr 2013 01:13:12 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 09 Apr 2013 21:13:23 -0400
In-reply-to: <049.f47df7abd8ea940c858f8dd249532f19@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.f47df7abd8ea940c858f8dd249532f19@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#5968: Improve onion key and TLS management
-------------------------+--------------------------------------------------
 Reporter:  mikeperry    |          Owner:                    
     Type:  enhancement  |         Status:  new               
 Priority:  major        |      Milestone:  Tor: 0.2.5.x-final
Component:  Tor          |        Version:                    
 Keywords:  tor-relay    |         Parent:  #5456             
   Points:               |   Actualpoints:                    
-------------------------+--------------------------------------------------

Comment(by mikeperry):

 Replying to [comment:11 nickm]:
 > Replying to [comment:10 mikeperry]:
 > > Aha! You only have 3 guards, and Directory Guards means you now only
 need to make exactly that many TLS connections as a client.
 > >
 > > This means we could include the TLS hash only in the full descriptor,
 and clients could then simply fetch the full descriptor for their guards.
 >
 > Fetch from whom?  If they get the descriptor from the party they assume
 is their guard, it could be a fake one signed by the adversary (if the
 adversary has compromised the guard's identity key).  If they get it
 directly from some other party, they will be leaking who their guards are,
 *AND* that party could give them a one-off fake one, or an old one, or
 whatever.  (The defense against getting an old/weird descriptor is
 checking its digest against the one listed in the consensus.  But the
 microdescriptor consensus doesn't list descriptor digests.)

 Oh damnit. I did not realize that clients stopped downloading the full
 consensus in favor of the microdesc-only one. Moreover, I also didn't know
 the microdescriptors in no way authenticated full descriptors. That sucks.

 I guess we're back to deciding if the overhead is worth it for this or
 not? Looks like it comes out to about 3% overhead for including a 256bit
 hash for each relay in the current cached-microdescs file.,,

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5968#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #8673 [Flashproxy]: host a flashproxy-reg-url on s3.amazonaws.com
Next by Author: Re: [tor-bugs] #5968 [Tor]: Improve onion key and TLS management
Previous by thread: Re: [tor-bugs] #5968 [Tor]: Improve onion key and TLS management
Next by thread: Re: [tor-bugs] #5968 [Tor]: Improve onion key and TLS management
Index(es):
- Author
- Thread