[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-dev] Proposal for PoW DoS defenses during introduction (was Re: Proposal 305: ESTABLISH_INTRO Cell DoS Defense Extension)
- To: tor-dev@xxxxxxxxxxxxxxxxxxxx
- Subject: Re: [tor-dev] Proposal for PoW DoS defenses during introduction (was Re: Proposal 305: ESTABLISH_INTRO Cell DoS Defense Extension)
- From: Georg Koppen <gk@xxxxxxxxxxxxxx>
- Date: Thu, 20 Jun 2019 04:22:00 +0000
- Autocrypt: addr=gk@xxxxxxxxxxxxxx; prefer-encrypt=mutual; keydata= mQINBFH3/woBEADHs/Q4t69Vm+mNMW0vH0Ms6HtjpzBsto/yyDAoLitmAxfMIeCuWuyuBdHR krdq9Rk5WQLYtP9eROGkuABK/UaxpLw8zkwkmqbxQ2wxytVwgonOmAFPXvPjzVy+ToJvKWJj tRGFoWwO9OEZ8q6xhVnwLUJXRQF01/XhBhU2RPzzUTHrgiY2bi6Ko34nSM8qAuidykqd/elI wE+kn4+TZ+yBC7pzwUfRK0bOqc05qtq5ooH7rYGpvdOkt9DuoFEjhLrBaL3UiP5J6D9W1Ltv 7Y239RGZyGr0wO5ClhuJwipnw6yWDt493cw4fOy7J1Lbo8dZyU4pnFIgt1Cu506/CvdQ53pR UHhCSIS/IyOiEL9PI/PPByG9UhwNQYk9U22h4MalPwa+4rZ1XA6mf5+T4QQRmghAnegPwyQw qnQzHc2ZPAal+Ill15AncyfIeMfuCLyA/TVWwQTQMzdcVwu3nljBfGOjOSTHOafBqsVlvgEo R9GB9OaTbriP7lCDJmBsgFFZ5F0m6us2pP72TpM0GMYCae7PHk7POhvcE5VJg03E3tjyQUQA zt5ZcpzjZtbcWIoYjxEJMq1Wzj0PYfZYFYZGq2lQx7xJ54gb+RlXEaKiXhDQH+EkrKZHBDWi atMbfkMWiknmn8O7VkuT4LOHsF1I9oJt1VTZ0dx2MVvk2hhs3QARAQABtCBHZW9yZyBLb3Bw ZW4gPGdrQHRvcnByb2plY3Qub3JnPokCOgQTAQgAJAIbAwULCQgHAwUVCgkICwUWAwIBAAIe AQIXgAUCUuzzUQIZAQAKCRCUNzqpS3wyI694D/90P74XiDzioGbNEH37W9P5G6unLUKp/zLf 5Ifosf6ijS5EvhKXpSXAqWu4eSpUh+i72Kr53SvzAIggWjUM61e92xt0bg4+VFaguMh6d9l0 MpDMfRJB+qoRNaDDyGk1VH9ZLBJOpTY59HcIIyg2LIMt1PHk+3npr0MnDfh/5fgyPvFRv9ZK WkKdwD4ImlqGXaxsES2pPk8tn21k7J4N8jzRAYM8oV9cMeeCbMgERilU2sRxNORs55zV6GiD A68lmwY6+OHjaKd0k+Oibs63PrTl1+P4EYBZTlXK9gSSWKiUydVP+2lQoyGVmuH0VpepEcnv zu06g+YU4TiH3f7t1chknGlEm1s872nyZo7Nd+zVDcIa4iklBMpeEsPDB6zRT7KBH+oCw5vK G+Ngjv3AO8hD2RTFHw8oAD8WPBbrOB2C9qSha/XSl7rjxTpqRillP+543xhQncC3b2x+Vk4C wlJdrjOvweMnM4xCEeg03WUeRz6a4Uuh6A9x4WZia+5Y5PrKG4GKPeBbskFdw6N0/10Gk1nF wpS42esKsrvqeltRLPzwFj0FEO+mole3y2f+iR8rJd/rik7AW9PM2YkhiF8kmcyh07GSjcCo qg7AkOJ87Bv2knZ0KYlukY5wBKK/DY55GTLGQ7w6kR/BzMOlKnru1e0+zvyZ4KijODEuaUi1 2bkCDQRblYJ6ARAAz+9QcEoz5GB8GoPRsVLDeAB33O3cHTiH/UGZjuiswnoaPZnJ+jt/1b3P CsAdWdFwj3oYHz5B2SxBl/GSslPBJAIzlLss3uGEq+DLqV5kzvL55dc3HTC8evNSJF6OBkqk 5r24yuJDbLVhpyB+34QfYN2vESBBf8usQrNqp3lfm0ePiHkLFBX8Y8hIdYg5pz5WzXywaz1t oGlyfDtfZuOqd0m8er4W5VmARb5PvB6TIGjSOhOTJPQV67c6cSxKsx+dCvgsZzBGVhlQ33nO 7yQKsvl+DFJ254s876AoyGQ7iQRxk/0/8mWOpdcmIqLjdmZNVX7OGmsJf4RfC7a+mUgImg5r za+A0qE13b+XwpzTBOgIhsFeqVySXCV865ZNSPqzOCTI5fNCa9RaOhswYQcrGsQUy7hiw3qU lJyDsOCuQ8AUxB8qHBQ9Eh4jSk0Pfgdk0/KHa8bshkbexQBq5zjQXFb6zSaSPPeJsJ3t1o68 shVV3DjX7msMP5tTvHPbM841OHxl2UIN/Lixw7tYDhXKOdshd3k3KuDZSv57vY2US5g437hh kYcYtz+EvP10ufJR/DM1ed4gozqQLMZcYR4DgzeB6q2f02paNSfOhEYliUmEHKV50tbIo3l7 1FiLRAeu/IHAupKpwjnud3XgFpwl38IROQLgUB0uf5bksGu10TUAEQEAAYkCPAQYAQoAJhYh BDXNdMJKmxWhnhqBoZQ3OqlLfDIjBQJblYJ6AhsMBQkB49aAAAoJEJQ3OqlLfDIj5z4QALaX P1KME/Eru5D4giAuflIzI7zQh2Hx+fOWwTL3fld8Cpkr3qpc8YD8aesL/y1Brrhj0cUHZsjq 3W7CdrjGj+bvNlycaGuBicpaODVcZDdn7wgvGJYmzkcgE5wWFRUCVrPPc+Q6LQNEVNyXyTQf qFikL7Cpt5q/vGvAyNxGOOTkK+hJXXRdwT4PrBS9ve9h+B+zf5dcd8mfRgQlQNjK/SEzVJpr qL7IS0dhIO1bTFLvMHz92M9MEiUz43PLKCtplF3gE++U6gcXMpWIZR/nf0Dx81lBMvWA4B8y eXuXjZW7oXa3sDrZ8tBTQ+UApHV/LCf9JUM8YA7eFL1O2KHGQKPURKeVvVBpkqSGBZj8kCqO XiGvlZCkzQTSRX0zr/j2uhaz3YjuflS94yYWDZ36Lc/pa24BHf+I+4ZW+kimoyi9VWmVYgBV iCDRs24S+++g+9wcRZ6TKYOvCW3mid5YFcOpwba1VZsPH6VBLT576KKg08rDTBixMTK6AAhb OeWcURa7bU5Q98wcexHbEfTxA0Bw6nplAW8IAksuaFjiScqJfJc9fSsjIbCArFoLkNgegpMJ BCWns156d8659oUmWZi01k3cwrDPQmOhvEqSDpVuAMK/ecLFUt+eZAABN/YD9MtDnEAwRE9U 3dS22OFRyBCGmZwuAQQD17UAc7YnwBGDuQINBFuVgrgBEADS9Y8DkhZWadmRRSJFr9z7UsNP 0GC3M9449dhWDq/cYkHKycK1t9cqDMd+cy59QdQBoZAFnIvMQ+bwzEamQyn5jSTkFU4ZYW/l DZXVqeyFCWFOFA9WXNj2Av5RtNZoL7zPLkVztNKxHIheKOx8w5XgFv/MDj1wVHMzQ5zLnCQv 6RbKslfAFIrzy2u2wW91yZ20Oqxjgku5jw8D1/cztkGa+g9a47E9jZSmUE+Nxo4hd7Vn09Qw K8wi86sQKwyCgrL3MugUoLIuiJuctF7MlmqkSKnGDKjgZSX9p64+bFqBUK+T9WEvY0abs6FX dsmMjp9T/N89pMmqvvBxu+XaVU//esApjI49az1jPOkh08UjlmtTN06KZhx6appub2tJZiNw NQDfBKtC572w1bXiHg0knyCRmwXubXtSs3bRiSY8WDRGkQa6nxky368tJ767KQvMD3Ck9gqd xrcBldPgN1bcFmSeNvQX7RA1arQzYuM+gdIUzborEYS6oFWygFNjwUIDiQzVrjiKodgWQIR+ 5MrNcU5Zw8edpDDPsYCO5yhPjVEpMtWXL7aAGUFSs+yXqj06HHSrK83I/BXaImpo1HRlCrIc Ktrbn3goAW9e3+VivWgElvvRs13/NZic7N+JjqaNfLKfPRS4oRkwVHD1kqZQ72iyXO6vtMCn DVJQBAcmPwARAQABiQRyBBgBCgAmFiEENc10wkqbFaGeGoGhlDc6qUt8MiMFAluVgrgCGwIF CQHj1oACQAkQlDc6qUt8MiPBdCAEGQEKAB0WIQSqGlmSKghzjSNCvAVNkqfkq3PsVAUCW5WC uAAKCRBNkqfkq3PsVPmaEADJL4Qsjt45hDStlhWrECSWcNdPws1klQybZ7mvjip3ChEr/6vX pDUrWvonUT70uUksC/1IMdIf/n4U/YYZDLznA4/mFfzD0sEhhQ+UzSsUV0su8uhexpY0D5uG ZC4YgVy8+CTAo0PHQV1VzEu7bbUJIqGQbum4rNUp3A0fuZJgcN0/m8z56uCCU+AWbtOThLu6 15LbIJiBNuE2ruA7fvedxAEyMAL0aSiRQIqV8iuIqWb2d1Aa6I1R3Ze0JYUotJNHkViSlhJH 1xpWurPjGWZMb2YGFI/sYbOdYvmnzvjEPT8EPgCzK8FhPkwzmUXY4X9UTZuzZQl04ajjkTd2 wt/+oHHDp9+4RlMv4259Tc3LC3CTiK9A0kyGs6VwS8r4L3f9t3r/Dp0gPXZYi4PEOFph98l5 +VFpaCI+BNIskgaKcrgp+VhjjtL80Xryw4euYaBc7TkijdaKzdk8Y1pn1tHKtgUiWMnoJq/6 zpwEntNFK86+PUzbuolPsloMx/BeQueEjFgAnRTWbq3hD9tu3plg2CfN0dicVzrzkchDqQqI N/mbpba+VXX6RZzbfYhcRwevmYb9eHmNFyLsjJotUK49yuhPCu7hdriWBpRT1tVI26HEB8OJ ZPZqnR/drMwOZNgnnyL+F00XvbbXEBJzgPM8mBlFJEw5/JQCnsXoJXJx2Ki9D/4jYWlXSTva Ux/gjT8noe8b24NJZcbOcNOj5UeRi1+D30uCWvTALaltnLgr4wBhkjLQ0AkszFrIaCwXMsvS rvcwCfoeOuO+4fnrHPpLT+gLShbY3TFXyOLXrpEDTKVbJ5DMAUjGynQuzPrsvJg46BZxsXRN bjC5qcazAcUsVs6zE7erX5+r4K52YWTNz9BPCDZ20BnUroyVjNfAngVQbVLvpvubjexLVg9Y HRkH8WKDMjFZU3FRww+blRQEhl0vdqYU0TNKgCWYE3RrvaS/F6/LzGTJSVr4B7eLZDqibE1r M1qjvrhqoLyIGpG2M1A0GfwmRoRlVs7ltoV8ZhnGwUSiQmKpuqhAGON9i/IWFL5ncAl9wfAW CCFprkVBqqFxgnB34bP9FtCu5sKeGf2+NbvqhQGaaY9kBIyouK7Pn3f//PXUxOm5vTXFkBV4 mZh1CU0y23/3G6SSdxr6WAIRUdrPD4HhDAKxxG275TsyGnTHYQ6shybdAWHcC5FoAohjTBPJ +8MYotKp3qoQBHQ2Z5BZrO4i/dgR44U1QdBL3CEjFRc9Evvi/bFpbQSdGY2p4Wx6zUqVj9b3 MhfambCS1hIZ3MzFFPlVbfcKFLbTp1op5aUM0s+R7fEgS1UkpRKoSmd+lxq7V3H43fPVoBiI iMVqRRL3IFUR+1BN4zqS9YSh6g==
- Delivered-to: archiver@xxxxxxxx
- Delivery-date: Thu, 20 Jun 2019 00:23:27 -0400
- In-reply-to: <CACsn0cmO=e0Kx9EQtR9wPD0U3EQtOS3wuAc+QUTGOutKNJXL0A@mail.gmail.com>
- List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
- List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
- List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
- List-post: <mailto:tor-dev@lists.torproject.org>
- List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
- List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
- Openpgp: preference=signencrypt
- References: <20190612121833.GA11139@raoul> <87zhmn0yg4.fsf@riseup.net> <515aa1fd-8952-cbef-6863-6e8830f2676b@avanix.es> <87h88trdjn.fsf@riseup.net> <067d4f4591cec1b1aa4fd4357fa2f608@riseup.net> <1E68B495-99F5-42B1-A58F-E45A1A5FDEE7@gnunet.org> <580adae7c97eeff6de7afe23cffecd39@chelseakomlo.com> <CACsn0cmO=e0Kx9EQtR9wPD0U3EQtOS3wuAc+QUTGOutKNJXL0A@mail.gmail.com>
- Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
- Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
Watson Ladd:
> On Tue, Jun 18, 2019 at 6:29 PM Chelsea Holland Komlo
> <me@xxxxxxxxxxxxxxxx> wrote:
>>
>> There are a couple approaches to consider.
>>
>> POW via hashing goes for a relatively simple to implement approach.
>> However, this incurs a high cost for all clients, and also environmental
>> damage, per previous email.
>>
>> Another approach similar to the above (but more environmentally
>> friendly) can be Proof of Storage (or proof of space), as in
>> https://eprint.iacr.org/2013/796.pdf
>>
>> With both of the above approaches, there will be a tradeoff to what the
>> cost is to deter a would-be attacker, versus the cost to real but
>> bandwidth/cpu limited clients, such as on mobile platforms.
>>
>> More involved approaches include anonymous blacklists/whitelists,
>> blinded tokens, etc. Previous work has been done in this space, here is
>> one example:
>> https://crysp.uwaterloo.ca/courses/pet/F11/cache/www-users.cs.umn.edu/~hopper/faust-wpes.pdf
>
> Privacy Pass has already been integrated into Tor Browser. Perhaps
> work could be done to use it here?
Where do you see that is has been integrated? As far as I know that's
not the case even though there are still plans to evaluate the latest
iteration closer to get a better understanding about whether it would be
good to integrate it.
[snip]
Georg
Attachment:
signature.asc
Description: OpenPGP digital signature
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev