an introduction to the tor ecosystem for developers
play

An Introduction to the Tor Ecosystem for Developers Alexander Fry - PowerPoint PPT Presentation

Sep 19, 2023 •132 likes •617 views

An Introduction to the Tor Ecosystem for Developers Alexander Fry February 2, 2020 FOSDEM About Me Core Developer at The Tor Project since early 2017. Free Sofware developer since 2006. Worked with distributed systems in the

  1. An Introduction to the Tor Ecosystem for Developers Alexander Færøy February 2, 2020 FOSDEM

  2. About Me • Core Developer at The Tor Project since early 2017. • Free Sofware developer since 2006. • Worked with distributed systems in the Erlang programming language, WebKit-based mobile web browsers, consulting, and firmware development. • Co-organizing the annual Danish hacker festival BornHack. 1

  3. What is Tor? • Online anonymity, and censorship circumvention. ◦ Free sofware. ◦ Open network. • Community of researchers, developers, users, and relay operators. • U.S. 501(c)(3) non-profit organization. 2

  4. History Early 2000s Working with the U.S. Naval Research Laboratory. 2004 Sponsorship by the Electronic Frontier Foundation. 2006 The Tor Project, Inc. became a non-profit. 2008 Tor Browser development. The Arab spring. 2010 2013 The summer of Snowden. 2018 Anti-censorship team created. 2019 Tor Browser for Android released. 2020 Network Health team created. 3

  5. Somewhere between 2,000,000 and 8,000,000 daily users.

  8. But we also ship Tor to others: • We have our own Debian mirror on deb.torproject.org. • Other free sofware distributions. This is ofen where the relay operators get their Tor version from. • Brave’s "Private Tab" feature uses Tor. • OnionShare, SecureDrop, etc.

  9. The Tor Network Number of Relays 8 , 000 Relays Bridges 6 , 000 4 , 000 2 , 000 0 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 Source: metrics.torproject.org 8

  10. The Tor Network Total Relay Bandwidth 600 Advertised Bandwidth Bandwidth History Bandwidth in Gbit/s 400 200 0 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 Source: metrics.torproject.org 9

  11. The Tor Network Tor’s safety comes from diversity : 1. Diversity of relays. The more relays we have and the more diverse they are, the fewer attackers are in a position to do traffic confirmation. 2. Diversity of users and reasons to use it. 50,000 users in Iran means almost all of them are normal citizens. Research problem : How do we measure diversity over time? 10

  12. The Tor Network Number of Relays per Platform Linux BSD 6 , 000 Windows macOS Other 4 , 000 2 , 000 0 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 Source: metrics.torproject.org 11

  13. https://trac.torproject.org/ 11

  14. 11

  15. Network Team The team dedicated to develop and maintain the “Tor” codebase. Internally, we ofen refer to “Tor” as “little-t-tor”. Deal with everything that “impacts the network”. 12

  16. Network Team • The reference Tor implementation is written in C. • Ongoing experiments with Mozilla’s Rust programming language. • Follow best practices: high coverage for tests, integration tests, coverity, static code analysis, and code review policies. • The team is responsible for: feature development, code reviews, auditing, working with downstream projects (Tor Browser and distro packagers), and specification design and implementation. 13

  17. Source: viva64.com 14

  18. Tor Releases Version Merge Window Feature Freeze Release End of Life 0.3.5 (LTS) 15/6/2018 15/9/2018 7/1/2019 1/2/2022 0.4.0 15/10/2018 15/1/2019 2/5/2019 2/2/2020 0.4.1 15/2/2018 15/5/2019 20/8/2019 20/5/2020 0.4.2 10/6/2019 15/9/2019 9/12/2019 15/9/2022 0.4.3 11/10/2019 15/1/2020 15/4/2019 TBD 0.4.4 15/2/2020 15/5/2020 15/8/2020 TBD 0.4.5 15/6/2020 15/9/2020 15/12/2020 TBD 15

  19. Contributing to Tor 1. Find a ticket on https://trac.torproject.org/ that you are interested in hacking on. 2. Hack on it until you think it’s time to share your work. 3. Ensure that tests and various other code requirements are satisfied using make check . 4. Write a "changes" file. 5. Open a PR on https://github.com/torproject/tor and await review. 16

  20. Contributing to Tor • For “upfront CI” we use a mixture of Travis and AppVeyor. This covers (some of) Linux, macOS, and Windows. • Once a patch lands, we have a setup of Jenkins builder too. • Check whether “changes” file is included, whether functions become overly complex, etc. 17

  21. Contributing to Tor Protocol changes require a specification proposal and discussion before implementation. Specifications can be found at gitweb.torproject.org/torspec. 18

  22. Bandwidth Scanning The Tor Network Bandwidth Scanner Webserver R 4 R 2 E 1 R 1 R 3 R 6 R 5 19

  23. Bandwidth Scanning The Tor Network Bandwidth Scanner Webserver R 4 R 2 E 1 R 1 R 3 R 6 R 5 20

  24. Bandwidth Scanning The Tor Network Bandwidth Scanner Webserver R 4 R 2 E 1 R 1 R 3 R 6 R 5 21

  25. Simple Bandwidth Scanner • Bandwidth Scanner implemented in the Python programming language. • Well-documented internals. • Used by 3 out of 6 of the Directory Authorities that use input from Bandwidth Scanners. • Could benefit from more contributors :-) • Written by juga0, Matt Traudt, and teor. https://sbws.readthedocs.io/ 22

  26. Anti-censorship Team • New team created in early 2019 to handle all anti-censorship work that was previously handled by the network team. • Develops and maintains the Pluggable Transports that are shipped with in Tor Browser. • Focus on Snowflake, BridgeDB, and Gettor. 23

  28. Pluggable Transports Censored Region Bridge Relay Alice Obfuscated Protocol PT Client PT Server 25

  29. BridgeDB Source: bridges.torproject.org 26

  30. BridgeDB access via Moat 27

  31. Snowflake Censored Region Snowflake Broker Bridge Alice Snowflake PT Client Snowflake PT Server 28

  32. Snowflake Censored Region Snowflake Broker Bridge Alice Snowflake PT Client Snowflake PT Server 29

  33. Snowflake Censored Region Snowflake Broker Bridge Alice Snowflake PT Client Snowflake PT Server 30

  34. Snowflake Censored Region Snowflake Broker Bridge Alice Snowflake PT Client Snowflake PT Server 31

  35. Snowflake Censored Region Snowflake Broker Bridge Alice Snowflake PT Client Snowflake PT Server 32

  36. Snowflake 33

  37. Snowflake • The Client and Broker component written in Google’s Go programming language. • Proxy WebExtension written in JavaScript. • Go version exists of the Proxy for more static deployments. https://snowflake.torproject.org/ 34

  38. Applications Team The team responsible for the user-facing applications such as Tor Browser. Works closely with the UX team on analysing and improving the user experience of our products. 35

  39. Tor Browser = 36

  40. Tor Browser Anti-Censorship Team • FTE. • Meek. • Obfs 3 and 4. • Scramblesuit. Applications Team • Tor Launcher. • Tor Button. Network Team • Tor ("little-t-tor") 37

  41. Reproducible Builds Binary Source Build Step 38

  42. Reproducible Builds Binary Source Build Step Verifiable 39

  43. Reproducible Builds Binary Source Build Step Verifiable Usable 40

  44. Reproducible Builds Binary Source Build Step ? Verifiable Usable 41

  45. Other Projects Unfortunatenly, we don’t have time to go over everything we do in the Tor Project in this talk. We also have teams doing amazing work in areas such as: • Infrastructure. • UX. • Handling metrics in a safe manner. • And much more! 42

  46. How can you help? • Hack on some of our cool projects. • Find, and maybe fix, bugs in Tor. • Test Tor on your platform of choice. • Work on some of the many open research projects. • Run a Tor relay or a bridge! • Teach others about Tor and privacy in general. • Donate at donate.torproject.org 43

  47. Questions?

  48. This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License cba

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art

Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art

Developers Developers Developers (what about creatives?) Ryan Gorley Designer + Marketer + Art Director FOSS: A Developers World? Creatives have abilities to ofer Challenge Ignorance & Bias Feature Gaps Inertia Introduce FOSS

514 views • 34 slides
RENDERING FASTER AND BETTER WITH VRWORKS John Spitzer, April 4, 2016 VR Ready Headset Hardware

RENDERING FASTER AND BETTER WITH VRWORKS John Spitzer, April 4, 2016 VR Ready Headset Hardware

April 4-7, 2016 | Silicon Valley RENDERING FASTER AND BETTER WITH VRWORKS John Spitzer, April 4, 2016 VR Ready Headset Hardware Developers Partners HELPING THE ECOSYSTEM BUILD AMAZING VR App Engine Developers Developers 2 LEADING

687 views • 43 slides
INTRODUCTION TO INTRODUCTION TO ECOSYSTEM SCIENCE ECOSYSTEM SCIENCE CONCEPTS CONCEPTS Lesson

INTRODUCTION TO INTRODUCTION TO ECOSYSTEM SCIENCE ECOSYSTEM SCIENCE CONCEPTS CONCEPTS Lesson

INTRODUCTION TO INTRODUCTION TO ECOSYSTEM SCIENCE ECOSYSTEM SCIENCE CONCEPTS CONCEPTS Lesson Learning Goals At the end of this lesson you should be able to: ! Discuss with examples the concepts of food chain and food web ! Define

924 views • 35 slides
Discussion Roadmap Introduction Developers Application to Amend the Official Community

Discussion Roadmap Introduction Developers Application to Amend the Official Community

Discussion Roadmap Introduction Developers Application to Amend the Official Community Plan Zoning Amendment Application The Developers Proposal Traffic & Safety Concerns How an OCP gets Amended What Can We Do?

880 views • 39 slides
mobile automation made awesome App Developers Conference Los Angeles, CA Nov 6 2013 Jonathan

mobile automation made awesome App Developers Conference Los Angeles, CA Nov 6 2013 Jonathan

mobile automation made awesome App Developers Conference Los Angeles, CA Nov 6 2013 Jonathan Lipps Sr Developer Sauce Labs @AppiumDevs @jlipps @saucelabs Ecosystem & Integrations Project Lead & Architect

899 views • 65 slides
Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 1 Overview A brief history of JavaScript and ECMAScript JavaScript for Java developers The JavaScript ecosystem Getting access to JavaScript Some language basics A look at the Node.js standard

1.1k views • 57 slides
Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and

Introduction to JavaScript Niels Olof Bouvin 2 Overview A brief history of JavaScript and ECMAScript JavaScript for Java developers The JavaScript ecosystem Getting access to JavaScript Some language basics A look at the Node.js standard

1.03k views • 54 slides
2 Hello Quantum Developers World Yet Another Frontier for JavaScript Hello Quantum Developers

2 Hello Quantum Developers World Yet Another Frontier for JavaScript Hello Quantum Developers

2 Hello Quantum Developers World Yet Another Frontier for JavaScript Hello Quantum Developers World QCon London 2020 Miguel Ramalho Quantum Spectrum Software Physicists Scientists Developers Engineers Engineers Theorise Empirically

710 views • 51 slides
5 Ecosystem Services in Practice: Market-Based Ecosystem Services - From Theory to Application

5 Ecosystem Services in Practice: Market-Based Ecosystem Services - From Theory to Application

Se minar 5 Ecosystem Services in Practice: Market-Based Ecosystem Services - From Theory to Application Speaker Adam Davis Dave Batker Dr. Ben Guillon Ricardo Bayon 2011 ECOSYSTEM SERVICES SEMINAR SERIES Ecosystem Services Seminar

745 views • 35 slides
BEHAT KICKSTART FOR DRUPAL DEVELOPERS Florida DrupalCamp 2016 Orlando, FL - March 5 - 6, 2016

BEHAT KICKSTART FOR DRUPAL DEVELOPERS Florida DrupalCamp 2016 Orlando, FL - March 5 - 6, 2016

BEHAT KICKSTART FOR DRUPAL DEVELOPERS Florida DrupalCamp 2016 Orlando, FL - March 5 - 6, 2016 Peter Sawczynec Engineer INTRO TO DRUPAL TESTING ECOSYSTEM Behat SimpleTest PHPUnit JMeter Drupal Extension Mink Selenium 2.0

412 views • 39 slides
Introduction Introduction Soil is an important resource which supports a large number of ecosystem

Introduction Introduction Soil is an important resource which supports a large number of ecosystem

Introduction Introduction Soil is an important resource which supports a large number of ecosystem goods and services from which humankind benefits, being terrestrial environment with the largest biodiversity. The capacity of the soil to maintain

199 views • 18 slides
DEALING WITH DEVELOPERS Kelsey Becker Brookes Wednesday, September 25, 2019 Prepared for the

DEALING WITH DEVELOPERS Kelsey Becker Brookes Wednesday, September 25, 2019 Prepared for the

DEALING WITH DEVELOPERS Kelsey Becker Brookes Wednesday, September 25, 2019 Prepared for the 2019 ADOA Conference Developers An ounce of prevention is worth a pound of cure. 2 Developers Imposing obligations on developers is only

712 views • 22 slides
Ecosystem Services Assessment Multifunctionality Valuation of Ecosystem services Methods and

Ecosystem Services Assessment Multifunctionality Valuation of Ecosystem services Methods and

Ecosystem Services Assessment Multifunctionality Valuation of Ecosystem services Methods and basis for Suitable for ecosystem services decisions: Monetary terms that we have good knowledge of and is (WTP-studies, cost-benefit

617 views • 4 slides
Ecosystem services valuation A 15-minute introduction Thomas Enters, UNEP Common assumption

Ecosystem services valuation A 15-minute introduction Thomas Enters, UNEP Common assumption

Ecosystem services valuation A 15-minute introduction Thomas Enters, UNEP Common assumption Undervaluation of ecosystem goods and services has discriminated against their sustainable management and conservation. They have therefore long

422 views • 17 slides
e-MB & e-Billing EcoSystem 2 Agenda Talking point for presentations About Us Get to know

e-MB & e-Billing EcoSystem 2 Agenda Talking point for presentations About Us Get to know

e-MB & e-Billing EcoSystem 2 Agenda Talking point for presentations About Us Get to know more about us Introduction e-MB & e-Billing Intelligent Works Management System Ecosystem Need of IWMS Why do you need this? Our Solution

492 views • 27 slides
Biodiversity and ecosystem function Managing landscapes for multiple ecosystem services

Biodiversity and ecosystem function Managing landscapes for multiple ecosystem services

Biodiversity and ecosystem function Managing landscapes for multiple ecosystem services Christopher Philipson Twitter @PhilipsonChris Biodiversity and ecosystem function: the grassland experiments Cedar Creek in North America

578 views • 25 slides
To Relay or Not to Relay for Inter-Cloud Transfers? Fan Lai , Mosharaf Chowdhury, Harsha

To Relay or Not to Relay for Inter-Cloud Transfers? Fan Lai , Mosharaf Chowdhury, Harsha

To Relay or Not to Relay for Inter-Cloud Transfers? Fan Lai , Mosharaf Chowdhury, Harsha Madhyastha Background Over 40 Data Centers (DCs) on EC2, Azure, Google Cloud A geographically denser set of DCs across clouds Cloud apps host on

589 views • 21 slides
Can Far Memory Improve Job Throughput? Eurosys 2020 Talk Emmanuel Amaro, Christopher

Can Far Memory Improve Job Throughput? Eurosys 2020 Talk Emmanuel Amaro, Christopher

Can Far Memory Improve Job Throughput? Eurosys 2020 Talk Emmanuel Amaro, Christopher Branner-Augmon, Zhihong Luo, Amy Ousterhout, Marcos K. Aguilera (VMware Research), Aurojit Panda (NYU), Sylvia Ratnasamy, Scott Shenker The rise of far memory

339 views • 12 slides
Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou

Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou

IEEE INFOCOM 2017 Datacenter Networks 1 Survivable and Bandwidth- Guaranteed Embedding of Virtual Clusters in Cloud Data Centers Ruozhou Yu , Guoliang Xue, and Xiang Zhang Arizona State University Dan Li Tsinghua University 1/25 Outlines q

314 views • 28 slides
What We Talk About When We Talk About Cloud Network Performance* * With apologies to Raymond

What We Talk About When We Talk About Cloud Network Performance* * With apologies to Raymond

What We Talk About When We Talk About Cloud Network Performance* * With apologies to Raymond Carver Jeffrey C Mogul (Google) Lucian Popa (HP Labs) written while at HP Labs Google Confidential and Proprietary Disclaimers This work

717 views • 38 slides
Nonparametric density estimation Christopher F Baum EC 823: Applied Econometrics Boston College,

Nonparametric density estimation Christopher F Baum EC 823: Applied Econometrics Boston College,

Nonparametric density estimation Christopher F Baum EC 823: Applied Econometrics Boston College, Spring 2013 Christopher F Baum (BC / DIW) Nonparametric density estimation Boston College, Spring 2013 1 / 24 kdensity Kernel density plot To

586 views • 24 slides
Caching in HTTP Adaptive Streaming: Friend or Foe? Danny Lee Ali C. Begen Constantine Dovrolis

Caching in HTTP Adaptive Streaming: Friend or Foe? Danny Lee Ali C. Begen Constantine Dovrolis

Caching in HTTP Adaptive Streaming: Friend or Foe? Danny Lee Ali C. Begen Constantine Dovrolis Objectives What happens when a cache lies between a content server and client? What is the simplest scenario that results in bitrate

642 views • 33 slides
BCStore: Bandwidth-Efficient In-memory KV-Store with Batch Coding Shenglong Li , Quanlu Zhang, Zhi

BCStore: Bandwidth-Efficient In-memory KV-Store with Batch Coding Shenglong Li , Quanlu Zhang, Zhi

BCStore: Bandwidth-Efficient In-memory KV-Store with Batch Coding Shenglong Li , Quanlu Zhang, Zhi Yang and Yafei Dai Peking University Outline Introduction and Motivation Our Design System and Implementation Evaluation Outline

1.02k views • 40 slides
A Novel Parallel Traffic Control Mechanism for Cloud Computing Zheng Li, Nenghai Yu, Zhuo Hao

A Novel Parallel Traffic Control Mechanism for Cloud Computing Zheng Li, Nenghai Yu, Zhuo Hao

A Novel Parallel Traffic Control Mechanism for Cloud Computing Zheng Li, Nenghai Yu, Zhuo Hao MOE-Microsoft Key Laboratory of Multimedia Computing and Communication University of Science and Technology of China Outline Introduction

768 views • 17 slides

More recommend