[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Hidden Service Scaling

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Hidden Service Scaling
From: Michael Rogers <michael@xxxxxxxxxxxxxxxx>
Date: Fri, 09 May 2014 10:14:03 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 09 May 2014 05:14:27 -0400
In-reply-to: <536B8964.3010607@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <52539DA7.3030409@xxxxxxxxx> <536165BC.9090100@xxxxxxxxx> <5368F1AF.2000407@xxxxxxxxxxxxxxxx> <53694F1B.6080300@xxxxxxxxx> <53695171.7020608@xxxxxxxxx> <536A2C6C.4090406@xxxxxxxxxxxxxxxx> <536A601D.6040206@xxxxxxxxx> <536A6DB5.9060000@xxxxxxxxxxxxxxxx> <536B8964.3010607@xxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux i686; rv:24.0) Gecko/20100101 Thunderbird/24.5.0

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 08/05/14 14:40, Christopher Baines wrote:
>> Perhaps it would make sense to pick one or more IPs per guard,
>> and change those IPs when the guard is changed? Then waldo's
>> attack by a malicious IP would only ever discover one guard.
> 
> If you change the IP's when the guard is changed, this could break
> the consistency between different instances of the same service
> (assuming that the different instances are using different
> guards).

It should be possible to avoid breaking consistency by having an
overlap period: when a guard is scheduled to be replaced, each
instance connects to a new guard and IPs, the new descriptor is
published, then each instance disconnects from the old guard and IPs.

This should work whether or not the instances use the same guards. If
the instances use the same guards, waldo's attack can discover one
guard shared by all instances; otherwise it can discover one guard per
instance. I'm not sure which is worse for anonymity - any thoughts?

Cheers,
Michael
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBCAAGBQJTbJxbAAoJEBEET9GfxSfMCx0H/RLCDgFIzISTyLGZMU9rPnuB
gHmgD51bCiTDKmqCB4uYJMKl15o5RtTplLPIgnNCWz+W0x1nI+e7+6+M1IYmGGs7
cCe/wlYYMpNlN8T5DcsE/cTh3zMmWRidVsocJhV/4muZFZvihtTOHm48CHDSC86I
urVUneJJFFXZLlQQKaW9NAcvom9srdt1NiKxhHSbxbHL8kyfYl4GiPgabBDStOUh
jsJc5dgzC51mpnyOifHTL9lS0Mr05Y7WiGKMb3D0b7U3Mbc5YBEy9D7nq/4MZvW+
ScQTDaioXW5v6euF1cnmN6BH7yRJ/TKAVLD/ODrisGlDOvVI5z/a569zsbCMTdQ=
=SOAW
-----END PGP SIGNATURE-----
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Hidden Service Scaling
  - From: Christopher Baines

References:
- Re: [tor-dev] Hidden Service Scaling
  - From: Michael Rogers
- Re: [tor-dev] Hidden Service Scaling
  - From: Christopher Baines
- Re: [tor-dev] Hidden Service Scaling
  - From: Christopher Baines
- Re: [tor-dev] Hidden Service Scaling
  - From: Michael Rogers
- Re: [tor-dev] Hidden Service Scaling
  - From: Christopher Baines
- Re: [tor-dev] Hidden Service Scaling
  - From: Michael Rogers
- Re: [tor-dev] Hidden Service Scaling
  - From: Christopher Baines

Prev by Author: Re: [tor-dev] Hidden Service Scaling
Next by Author: Re: [tor-dev] Hidden Service Scaling
Previous by thread: Re: [tor-dev] Hidden Service Scaling
Next by thread: Re: [tor-dev] Hidden Service Scaling
Index(es):
- Author
- Thread