Re: Tor on Android

To: tor-java@xxxxxxxxxxxxxx

Subject: Re: Tor on Android

From: Merlijn Hofstra <mhofstra@xxxxxxxxx>

Date: Wed, 16 Sep 2009 20:02:50 +0200

Delivered-to: archiver@xxxxxxxx

Delivered-to: tor-java-outgoing@xxxxxxxx

Delivered-to: tor-java@xxxxxxxx

Delivery-date: Wed, 16 Sep 2009 14:02:54 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=+vHZJmztZLeLtzAH0Gi7d3lP55NI9jDQ7IVpRpbVF3c=; b=EQZdV6MA9LyUiDkh6g3pEiS+IiVtf3G8ElYGWUL11bZcGzSqhyseAt5KB/IVpNNqt9 rhoge4Yl9PPFkpzd7ytDKBzVDTyJyuDWMU/3KIiXPNXrghHPnrFPgQdtImXA6ZUGqlzl h6xFmrqkL0Jf0j/mv7r/jXrEpLNvywFMKsWlA=

Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=baiBdn7WF7f2Xuk2ujgzc6tiYBJVcfoTF3FtR8hMuAXngQrGUF7JiNxgM70ojKaGqn nipsK2cVDzEDCq7MmRCGjccs/ItM3L6NO21aTat6zFPYq87il1zXp31gIDUF8v/4rkqg Aj0j9Us7liIggJXDy5Bs8q6aBNTkyiCXcYkDA=

In-reply-to: <55158e530909161031i1293811an6a40fa6c90131d68@xxxxxxxxxxxxxx>

References: <4AB07511.7030605@xxxxxxxxxxxxx> <20090916065547.GA15660@xxxxxxxxxxxxx> <4AB0976B.2080707@xxxxxxxxxxxxx> <20090916090326.GA31880@xxxxxxxxxxxxx> <1253121398.29934.40.camel@pegas> <55158e530909161031i1293811an6a40fa6c90131d68@xxxxxxxxxxxxxx>

Reply-to: tor-java@xxxxxxxxxxxxxx

Sender: owner-tor-java@xxxxxxxxxxxxxx

On Wed, Sep 16, 2009 at 19:31, Nathan Freitas <nathan@xxxxxxxxxxx> wrote:

On Wed, Sep 16, 2009 at 1:16 PM, Andriy Panchenko <andriy.panchenko@xxxxxxxxxxxxxxxxxxx> wrote:

BTW, maybe it makes sense also to keep/support a general purpose
OnionCoffee besides that, specially tailored for mobile devices?

Yes, figuring out how to branch/fork segments of the code, specifically around HTTP/SSL/TLS and JSSE will be important, since that is the primary difference between Android and JDK 1.6. In addition, the removal of AWT/UI calls from within the core OC engine is another step needed to keep the majority of codebase working between the two platforms.

Android / Sun-JDK / OpenJDK / BouncyCastle all support a large subset of the JCA standard, and from my testing on Android at least it supports all the cryptography functions needed for Tor. The only platforms that will be hard to support are RIM (BlackBerry) and older Symbian phones, as they don't provide any form of JCA at all.

Also I fully agree that a java implementation should support as much of Tor as possible, but I wonder if it's a good idea to do this in a single project. Interests are likely to vary, and from my "benchmark" results with OnionCoffee in it's current state I can safely say that it is not very well suit for usage on a devices with limited resources.

Cheers,

Merlijn

References:

Tor on Android
- From: Jacob Appelbaum
Re: Tor on Android
- From: Jacob Appelbaum
Re: Tor on Android
- From: Lexi Pimenidis
Re: Tor on Android
- From: Andriy Panchenko
Re: Tor on Android
- From: Nathan Freitas