[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8240 [Tor]: Raise our guard rotation period, if appropriate

Subject: Re: [tor-bugs] #8240 [Tor]: Raise our guard rotation period, if appropriate
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 04 Jul 2015 18:00:43 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 04 Jul 2015 14:00:53 -0400
In-reply-to: <044.f0e1de900e99b0e6752c4683a25a0fc6@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.f0e1de900e99b0e6752c4683a25a0fc6@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#8240: Raise our guard rotation period, if appropriate
-------------------------+-------------------------------------------------
     Reporter:  arma     |      Owner:
         Type:  defect   |     Status:  assigned
     Priority:  major    |  Milestone:  Tor: 0.2.7.x-final
    Component:  Tor      |    Version:  Tor: 0.2.7
   Resolution:           |   Keywords:  tor-client, needs-proposal,
Actual Points:           |  023-backport, unfrozen, 027-triaged-1-in,
       Points:  medium   |  SponsorU
                         |  Parent ID:
-------------------------+-------------------------------------------------

Comment (by asn):

 Some thoughts here about raising the rotation period to 9 months.

 Let's assume a 5% network adversary and a single guard per client. This
 means that every time we pick a guard we toss a coin with probability 0.95
 of coming out safe. Hence after `n` guard rotations, we have (0.95^n^)
 probability of coming out safe.

 This means that after 14 rotations we have more than 50% probability of
 being unsafe and after 6 rotations we have 25% probability of being
 unsafe.

 Currently, with 2 to 3 months rotation period, this means that after about
 3 years we have 50% probability of being unsafe. Or after 1.5 year we have
 25% probability of being unsafe. This does not sound terrible.

 OTOH, a 9 month rotation period gives us about 10 years before we have 50%
 prob of being unsafe, and 4.5 years before we have 25% probability of
 being unsafe. This seems like a pretty big safety guarantee compared to
 the rest of the security of Tor.

 Alternatively, with a 5 month rotation period, we have about 5 and a half
 years before we are 50% unsafe, and about 2.5 years before we are 25%
 unsafe. This might be more appropriate, considering the load balancing
 improvements that 5 months give us compared to 9 months, plus the concerns
 that people have raised against keeping a guard for too long.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8240#comment:50>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #16498 [meek]: Update meek quick start screenshots for TB 4.5
Next by Author: Re: [tor-bugs] #15937 [Tor]: Clients fail on the 7th rapid SOCKS request to the same HS
Previous by thread: Re: [tor-bugs] #13302 [Service - git]: Move secret bad.conf to public repository
Next by thread: Re: [tor-bugs] #8240 [Tor]: Raise our guard rotation period, if appropriate
Index(es):
- Author
- Thread