Delivery-Date: Mon, 16 Mar 2015 21:09:52 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_ADSP_CUSTOM_MED,
	DKIM_SIGNED,FREEMAIL_FROM,RCVD_IN_DNSWL_MED,T_DKIM_INVALID,T_RP_MATCHES_RCVD,
	URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id C4C2C1E07FB
	for <archiver@seul.org>; Mon, 16 Mar 2015 21:09:50 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 75C8B33636;
	Tue, 17 Mar 2015 01:09:44 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 68A2729183
 for <tor-talk@lists.torproject.org>; Tue, 17 Mar 2015 01:09:41 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id LxdetTDvS54A for <tor-talk@lists.torproject.org>;
 Tue, 17 Mar 2015 01:09:41 +0000 (UTC)
Received: from mail-qc0-x234.google.com (mail-qc0-x234.google.com
 [IPv6:2607:f8b0:400d:c01::234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id 41CBA29172
 for <tor-talk@lists.torproject.org>; Tue, 17 Mar 2015 01:09:41 +0000 (UTC)
Received: by qcto4 with SMTP id o4so60873064qct.3
 for <tor-talk@lists.torproject.org>; Mon, 16 Mar 2015 18:09:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=message-id:date:from:user-agent:mime-version:to:subject:references
 :in-reply-to:content-type:content-transfer-encoding;
 bh=vtbx6te06285CMbCo5206N/ie+9ofv1dbEpOiMQL0fg=;
 b=MCmHePcDnm1cMd+6MivuxGJCNtQCGkF+oY8Q0/PMCejB+e4etStdmfue+qfsQn2nBt
 asuL/r3yu/2GUpiAwgT927e5PT1aM9ux/ZaQtISmsXAzMd3coMw0wZanW6UrIrWxyoHl
 qrMJnqfmcNJgrBmQ4D/QhzDHQGLRT67oodvHTz0HWoO630Drt5p/x+jrCkzESvulp4wY
 ZlL2xg1TYKdUIjWNZIAdDitrChL6yHAsGt7PwkStXnibtBOTRqnoR5oH5Z/olvfcVd9r
 Ha7X4KfVwayaOZGatIjzfCss2HWgODt8/l5ZSyJrhkLAOcP64w9Uvsf7jjbimnovwpN5
 TYFA==
X-Received: by 10.55.20.71 with SMTP id e68mr53671916qkh.38.1426554578982;
 Mon, 16 Mar 2015 18:09:38 -0700 (PDT)
Received: from [127.0.0.1] (ool-44c40aca.dyn.optonline.net. [68.196.10.202])
 by mx.google.com with ESMTPSA id z78sm8615582qkg.44.2015.03.16.18.09.38
 for <tor-talk@lists.torproject.org>
 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Mon, 16 Mar 2015 18:09:38 -0700 (PDT)
Message-ID: <55077ED0.3000503@gmail.com>
Date: Mon, 16 Mar 2015 21:09:36 -0400
From: Kevin <kevinsisco61784@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64;
 rv:31.0) Gecko/20100101 Thunderbird/31.5.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <CAD2Ti28qOKy5BTd-VNr0TxLDnAbrOaTwAxVHbs894PMrFGma6A@mail.gmail.com>
In-Reply-To: <CAD2Ti28qOKy5BTd-VNr0TxLDnAbrOaTwAxVHbs894PMrFGma6A@mail.gmail.com>
X-Antivirus: avast! (VPS 150316-0, 03/16/2015), Outbound message
X-Antivirus-Status: Clean
Subject: Re: [tor-talk] RAPTOR: Routing Attacks on Privacy in Tor
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 3/16/2015 7:26 PM, grarpamp wrote:
> http://arxiv.org/abs/1503.03940
>
> Yixin Sun, Anne Edmundson, Laurent Vanbever, Oscar Li, Jennifer
> Rexford, Mung Chiang, Prateek Mittal
> (Submitted on 13 Mar 2015)
>
> The Tor network is a widely used system for anonymous communication.
> However, Tor is known to be vulnerable to attackers who can observe
> traffic at both ends of the communication path. In this paper, we show
> that prior attacks are just the tip of the iceberg. We present a suite
> of new attacks, called Raptor, that can be launched by Autonomous
> Systems (ASes) to compromise user anonymity. First, AS-level
> adversaries can exploit the asymmetric nature of Internet routing to
> increase the chance of observing at least one direction of user
> traffic at both ends of the communication. Second, AS-level
> adversaries can exploit natural churn in Internet routing to lie on
> the BGP paths for more users over time. Third, strategic adversaries
> can manipulate Internet routing via BGP hijacks (to discover the users
> using specific Tor guard nodes) and interceptions (to perform traffic
> analysis). We demonstrate the feasibility of Raptor attacks by
> analyzing historical BGP data and Traceroute data as well as
> performing real-world attacks on the live Tor network, while ensuring
> that we do not harm real users. In addition, we outline the design of
> two monitoring frameworks to counter these attacks: BGP monitoring to
> detect control-plane attacks, and Traceroute monitoring to detect
> data-plane anomalies. Overall, our work motivates the design of
> anonymity systems that are aware of the dynamics of Internet routing.
If such attacks are network wide, is there anything the end-user can do 
to keep themselves safe?  Does tor need special configuration?


---
This email is free from viruses and malware because avast! Antivirus protection is active.
http://www.avast.com

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

