[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-dev] Traffic correlation attacks on Hidden Services

To: "tor-dev@xxxxxxxxxxxxxxxxxxxx" <tor-dev@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-dev] Traffic correlation attacks on Hidden Services
From: Virgil Griffith <i@xxxxxxxxx>
Date: Thu, 24 Dec 2015 06:08:51 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 24 Dec 2015 01:09:16 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=virgil.gr; s=dkim; h=mime-version:from:date:message-id:subject:to:content-type; bh=zDXjhQZ6YhcNYO9Ed8Ir7jV8Ac9LjK05M2ZjVPOENIs=; b=PEf8OVS9lc30eK1/+YvzV7iEMfqkcRZdhvL0FAg8nwy2DMQzrSXnlBmDSUNMmKHde/ crlaEeQ8c634rbZjiE6LzgwQd2T8AghcBcsib/uOLJRCG31jnJ6IimlcC3bp47dy4zSe DOldlG5xYBrH2p222zV0KdtEzDYHblL79I65s=
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

I've been looking into simple graph-theoretic metrics for Roster to quantifying Tor's susceptibility to traffic correlation attacks, mostly using BGPStream,Âhttps://bgpstream.caida.org/Â.

All of the academic literature I've read talks about the risk to Tor users of an AS being in the path between client <-> guardÂ+ exit <-> destination.

Questions:

(1) To ensure I'm not measuring the wrong thing, can someone be more specific on the correlation attack scenario for Tor hidden services?

(2) Just guessing, but would be it be the same but replace "exit <-> destination" with: "HS server <-> HS guard" ?

(3) If yes to (2), the natural solution is simply to install a Tor relay on the HS server itself so that there's no ASpath between the two?

Comments greatly appreciated.Â I'm not an internet routing expert and I want to ensure Roster is incentivizing the right things to harden the network.

-V

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Traffic correlation attacks on Hidden Services
  - From: Paul Syverson

Prev by Author: Re: [tor-dev] Better relay uptime visualisation
Next by Author: Re: [tor-dev] Have the Tor daemon use more cores
Previous by thread: Re: [tor-dev] RFC: AEZ for relay cryptography, v2
Next by thread: Re: [tor-dev] Traffic correlation attacks on Hidden Services
Index(es):
- Author
- Thread