[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records

Subject: Re: [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 20 Aug 2015 03:38:23 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 19 Aug 2015 23:38:31 -0400
In-reply-to: <049.189c52c8943c0b51807168a743a4bec1@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.189c52c8943c0b51807168a743a4bec1@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16861: Pad Tor connections to collapse netflow records
-----------------------------+--------------------------
     Reporter:  mikeperry    |      Owner:  mikeperry
         Type:  enhancement  |     Status:  needs_review
     Priority:  normal       |  Milestone:
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+--------------------------

Comment (by mikeperry):

 Roger - I'm in complete agreement with your statements, save for
 hesitation on moving quickly. This is a narrow case where it's really easy
 to do what we want from a technical POV. So long as we ensure that this
 patch is doing what we intend (which is just to send at least one cell on
 a connection every 15s), then I think getting this patch out there faster
 will move everything you said forward quicker - mobilizing the research
 community, making people excited to run more fast guard nodes, etc. And if
 we find out it isn't doing what we intend, or causing too much load, we
 turn it off from the consensus. Release early, release often! Move fast
 and break stuff (yeah I just said that). Etc etc.

 Some third-rate researchers will be sure to deliberately misinterpret this
 defense so they can get a cheap publication, but I also suspect that some
 good researchers will tell us what else we could do against the more
 complicated, higher-resolution cases than default-configuration netflow
 records.

 I also believe that future defenses will be completely orthogonal to the
 netflow defense code and can be completely ignorant of it in their
 implementation and still remain optimal, since if they decide to send
 padding for any reason, then the netflow defense won't (since the netflow
 defense only sends padding if the connection is idle).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16861#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #14272 [Tor Launcher]: Make Tor Launcher work with Unix Domain Socket option
Next by Author: Re: [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records
Previous by thread: Re: [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records
Next by thread: Re: [tor-bugs] #16861 [Tor]: Pad Tor connections to collapse netflow records
Index(es):
- Author
- Thread