[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17031 [Ponies]: hardware tor relay

Subject: Re: [tor-bugs] #17031 [Ponies]: hardware tor relay
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 11 Sep 2015 01:01:42 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 10 Sep 2015 21:01:53 -0400
In-reply-to: <047.c71e46218ca97eb6e91ff7712aefd6b5@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.c71e46218ca97eb6e91ff7712aefd6b5@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17031: hardware tor relay
-------------------------+-----------------
     Reporter:  elypter  |      Owner:
         Type:  task     |     Status:  new
     Priority:  normal   |  Milestone:
    Component:  Ponies   |    Version:
   Resolution:           |   Keywords:
Actual Points:           |  Parent ID:
       Points:           |
-------------------------+-----------------

Comment (by elypter):

 Replying to [comment:6 cypherpunks]:
 > A very large number of attacks is non-destructive and will leave no
 traces of tampering (e.g. power/timing/RF analysis, fault injection, ...).
 Do some research on side channel attacks.
 against rf analysis you could use a jammer. power, timing and fault
 injection sound to me like exploiting implementation weaknesses.
 you wouldnt say its theoretically impossible to make tor secure because
 there have been many cases of attackers using buffer overflows is programs
 that are written in c either.

 i dont say its easy to harden the hardware but so is software.

 even though this doesnt seem feasable and the best solution today we dont
 know what will happen in the future. maybe open decentralized hardware is
 the future. or maybe usa and china will start a hardware trojan arms race
 and no hardware can be trusted anymore.

 looking at all this stuff, uefi, datacenter infiltration, binary blobs
 maybe the focus should really first an open secure platform before looking
 at a closed secure one. tor only works under the assumption that most
 participants care about opsec. the best defense against network
 adversaries is worth nothing if the platform can be attacked.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17031#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #17031 [general]: hardware tor relay
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #17037 [Tor]: Strange errors. Seems like new type of attack to hidden service.
Next by Author: Re: [tor-bugs] #17015 [Chutney]: chutney should try harder to find a stable/different version of tor
Previous by thread: Re: [tor-bugs] #17031 [Ponies]: hardware tor relay
Next by thread: [tor-bugs] #17032 [Tor]: Threadpool doesn't get shutdown when changing from relay to client
Index(es):
- Author
- Thread