[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #10969 [Core Tor/Tor]: Set of guard nodes can act as a linkability fingerprint

Subject: Re: [tor-bugs] #10969 [Core Tor/Tor]: Set of guard nodes can act as a linkability fingerprint
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 20 Feb 2017 09:09:55 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 20 Feb 2017 04:10:04 -0500
In-reply-to: <043.eddca51038b02280cf1d7f332be60d78@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.eddca51038b02280cf1d7f332be60d78@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10969: Set of guard nodes can act as a linkability fingerprint
-------------------------------------------------+-------------------------
 Reporter:  asn                                  |          Owner:
                                                 |  mikeperry
     Type:  defect                               |         Status:
                                                 |  assigned
 Priority:  High                                 |      Milestone:  Tor:
                                                 |  unspecified
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tor-client, tor-guard,               |  Actual Points:
  026-triaged-1, XKEYSCORE, prop259, SponsorU-   |
  deferred, tor-03-unspecified-201612            |
Parent ID:  #11480                               |         Points:  large
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+-------------------------

Comment (by asn):

 Replying to [comment:30 teor]:
 > Has the new guard design in 0.3.0 fixed this issue?
 > Has switching to one entry guard fixed this issue?

 Hey teor,

 switching to one entry guard slightly improved the situation, but did not
 fix the issue. The new guard design did not fix the issue either.

 An adversary who monitors your connection enough to be able to derive the
 first few elements of your guard list can use that info to track you down.
 This is even easier since currently we use multiple directory guards,
 which means that we easily leak the first 3 positions in our guard list
 (see `DFLT_N_PRIMARY_DIR_GUARDS_TO_USE`) (see #21006).

 Even with 1 directory guard, an adversary could get glimpses into your
 guard list when your guards are down, or when he kills your connections to
 them. To completely solve this issue we would need to use guard sets or
 some other wacky solution
 (http://www.homepages.ucl.ac.uk/~ucabaye/papers/guard_sets_for_onion_routing.pdf).
 We are pretty far away from this happening.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10969#comment:31>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] #21572 [Core Tor/Chutney]: Add a warning-only mode to test-network.sh
Next by Author: Re: [tor-bugs] #20212 [Applications/Tor Browser]: Tor can be forced to open too many circuits by embedding .onion resources
Previous by thread: Re: [tor-bugs] #10969 [Core Tor/Tor]: Set of guard nodes can act as a linkability fingerprint
Next by thread: [tor-bugs] #21494 [Core Tor/Tor]: Fix scan-build warnings about assigning to char**
Index(es):
- Author
- Thread