Re: [tor-bugs] #3313 [Tor Client]: Security enhancement against malware for Tor

["Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>]

#3313: Security enhancement against malware for Tor
-------------------------+--------------------------------------------------
 Reporter:  ioerror      |          Owner:  ioerror         
     Type:  enhancement  |         Status:  new             
 Priority:  normal       |      Milestone:                  
Component:  Tor Client   |        Version:  Tor: unspecified
 Keywords:               |         Parent:                  
   Points:               |   Actualpoints:                  
-------------------------+--------------------------------------------------

Comment(by nickm):

 To be clear on what this is trying to achieve, from IRC:

 {{{
 20:29 < nickm> Hm.  So as you see it, it's a forward-secrecy thing s.t. an
                attacker who compromises the user running Tor should not be
 able
                to deanonymize anything already started, or read any keys
 from a
                tor process already created.
 20:30 < nickm> Where we both agree that keys already deleted and
 connections
                already closed at the compromise time are safe...
 20:30 < nickm> and that keys created and connections made _after_ the
                compromise are potentially vulnerable.
 }}}

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3313#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs