[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor compromised?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor compromised?
From: Robert Ransom <rransom.8774@xxxxxxxxx>
Date: Fri, 14 Oct 2011 18:11:54 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 14 Oct 2011 14:12:10 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=CQ9ST4kBhMBk7N6sHfA44VRapSBnIgTb27eyZ+wfdnY=; b=XgohWt0nEqR9LZLzPH1xEsgtNiSdtkiyiJgWlJPWboBlg4B+j1aTJRDggIKHuomeiq npBhqMtSIdrNvd1xtXwbCNkVK1Ny38XFfdXMsqfcMrR4Jna2pINtKJQJS/D0cBtz931u RsXU4PmF/sqEAwmyoc3eNxB4wYKur90nU8pGg=
In-reply-to: <CALogXGUU3uDZXp-C-nPrXmGmU7xhnEPpRECLUbNDAHzEVQiacg@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4E96AFA7.3000301@xxxxxxxxx> <CALogXGUU3uDZXp-C-nPrXmGmU7xhnEPpRECLUbNDAHzEVQiacg@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On 2011-10-14, Mansour Moufid <mansourmoufid@xxxxxxxxx> wrote:
> On Thu, Oct 13, 2011 at 5:30 AM, George-Lopez <g.lo.subber@xxxxxxxxx> wrote:
>> French students were able to exploit a vulnerability in Tor network
>> Details here (french):
>> http://www.itespresso.fr/securite-it-la-confiance-dans-le-reseau-d-anonymisation-tor-est-ebranlee-47287.html/2
>
> More information:
>
> http://www.h2hc.com.br/palestrantes.php#Speaker7
> http://twitter.com/#!/efiliol/status/124427936001564672
>
> Sounds to me like a cryptographic attack (among others) -- the virus
> modifies the crypto upstream and there is an observable effect
> downstream. Could holding a CTR nonce constant in RAM (combined with
> plaintext injection) have a ripple effect in the Tor network?

We already use a fixed (all-zero) counter-mode nonce, since we never
use the same AES key for more than one counter-mode stream.

A change to an Tor relay's RNG or relay encryption can only affect the
connections (both circuits and TLS connections) between that relay and
the clients connecting to it.  If the later relays on a circuit are
behaving correctly, there is nothing an entry node can do to modify
the data sent on a circuit without causing that circuit to fail
completely (with high probability); if the exit node on a circuit *is*
compromised, the entry node doesn't need to muck with the circuit data
-- logging circuit-extension times is sufficient to trace the circuit.


Robert Ransom
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Tor compromised?
  - From: Mansour Moufid

References:
- [tor-talk] Tor compromised?
  - From: George-Lopez
- Re: [tor-talk] Tor compromised?
  - From: Mansour Moufid

Prev by Author: Re: [tor-talk] Tor compromised?
Next by Author: Re: [tor-talk] still problems - update available
Previous by thread: Re: [tor-talk] Tor compromised?
Next by thread: Re: [tor-talk] Tor compromised?
Index(es):
- Author
- Thread