[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[tor-dev] Effect of padding on end to end correlation false positive rate
- To: cpunks <[email protected]>
- Subject: [tor-dev] Effect of padding on end to end correlation false positive rate
- From: [email protected] (coderman)
- Date: Tue, 20 Oct 2015 15:41:43 -0700
- In-reply-to: <CAD2Ti2_1qj1nEPVcTnD1u3d6Ftuo=U2kbrmiNyAXd=HFmQBdwg@mail.gmail.com>
- References: <[email protected]> <CAD2Ti2_1qj1nEPVcTnD1u3d6Ftuo=U2kbrmiNyAXd=HFmQBdwg@mail.gmail.com>
On 10/20/15, grarpamp <[email protected]> wrote:...
>> [1]: https://blog.torproject.org/blog/traffic-correlation-using-netflows
>
> My thought was solely restricted to analysis of network
> traffic by *passive* adversary... not involving any collusion
> by actives over circuits they can see inside or pump within
> any given onion layer, though clocked and checked network
> fill by all proper nodes would inhibit pumping by actives.
> I talked on list with someone at briarproject and wherever
> else on idea of filling the network with traffic vs the passives.
> Apologize for not making time to review Mike's proposal
> or develop further talk yet. Someone will review / integrate
> fill padding of network with regard anonbib, Mike's, etc I'm sure,
> as it is clearly (to me at least) a weakness of non-filled
> non-store-and-forward networks vs the passives which we
> all know and love.
note that userspace stacks with multi-homed mobility-capable IPv6
ORCHIDv2 addresses can maintain logical connectivity over a set of
paths/circuits such that active attacks reduce capacity but are unable
to execute the easy confirmation and tagging attacks available in a
stream oriented implementation with TCP links over IPv4. in theory...
;P
best regards,