How Do Tor Users Interact With Onion Services? Philipp Winter, Annie - - PowerPoint PPT Presentation

how do tor users interact with onion services
SMART_READER_LITE
LIVE PREVIEW

How Do Tor Users Interact With Onion Services? Philipp Winter, Annie - - PowerPoint PPT Presentation

Jul 08, 2023 811 likes •1.44k views

How Do Tor Users Interact With Onion Services? Philipp Winter, Annie Edmundson , Laura Roberts, Agnieszka Dutkowska-Zuk, Marshini Chetty, Nick Feamster USENIX Security Symposium 15 August 2018 1 Tor is a Decentralized Anonymity Network The

slide-1
SLIDE 1

How Do Tor Users Interact With Onion Services?

Philipp Winter, Annie Edmundson, Laura Roberts, Agnieszka Dutkowska-Zuk, Marshini Chetty, Nick Feamster

USENIX Security Symposium 15 August 2018

1

slide-2
SLIDE 2

Tor is a Decentralized Anonymity Network

2

The Tor network

slide-3
SLIDE 3

Onion Services Provide Server Anonymity

3

The Tor network

slide-4
SLIDE 4

How Do Users Interact with Onion Services?

4

  • What are users’ mental models of onion services?
  • How do users use and manage onion services?
  • What are the challenges of using onion services?
slide-5
SLIDE 5

Main Findings

Despite extra security and privacy properties of onion services, many users are confronted with usability issues

  • Discovering the existence of onion services
  • Managing and remembering onion domains
  • Susceptibility to phishing attacks

We can learn from the issues users have encountered to implement design improvements

5

slide-6
SLIDE 6

Overview

1. Onion Services Background + Features 2. Methods 3. Results

a. Onion Sites Discovery b. Vanity Domains c. Verifying Onion Sites

4. Future Directions & Conclusions

6

slide-7
SLIDE 7

http://expyuzz4wqqyqhjn.onion

7

slide-8
SLIDE 8

http://expyuzz4wqqyqhjn.onion

8

Special-use domain

slide-9
SLIDE 9

http://expyuzz4wqqyqhjn.onion

9

Truncated, base 32-encoded hash over RSA public key

slide-10
SLIDE 10

http://expyuzz4wqqyqhjn.onion

10

Not limited to HTTP(S)

slide-11
SLIDE 11

Onion Service UI is Designed to be Seamless

11

slide-12
SLIDE 12

Onion Service UI is Designed to be Seamless

12

slide-13
SLIDE 13

Onion Service UI is Designed to be Seamless

13

slide-14
SLIDE 14

Onion Service UI is Designed to be Seamless

14

slide-15
SLIDE 15

Onion Services are Self-authenticating

15

3wcwjjnuvjyazeza.onion 3wcwjjnuvjyazeza

The Tor network

slide-16
SLIDE 16

Onion Services are Self-authenticating

16

3wcwjjnuvjyazeza.onion 3wcwjjnuvjyazeza

The Tor network

Public key

slide-17
SLIDE 17

Onion Services are Self-authenticating

17

3wcwjjnuvjyazeza.onion 3wcwjjnuvjyazeza

The Tor network

Public key

SHA-1

slide-18
SLIDE 18

Onion Services are End-to-end Encrypted

18

3wcwjjnuvjyazeza

The Tor network

slide-19
SLIDE 19

Onion Services are End-to-end Encrypted

19

3wcwjjnuvjyazeza

The Tor network

slide-20
SLIDE 20

Both Client and Server are Anonymous

20

3wcwjjnuvjyazeza

The Tor network

slide-21
SLIDE 21

Both Client and Server are Anonymous

21

3wcwjjnuvjyazeza

The Tor network

I talk to the client through relay R2 I talk to the onion service through relay R2 I have no idea who I’m talking to

slide-22
SLIDE 22

While onion services provide anonymity benefits, they are not perfect.

22

  • Susceptible to traffic analysis attacks
  • Configuration errors
  • Usability issues
slide-23
SLIDE 23

Overview

  • 1. Onion Services Background + Features
  • 2. Methods
  • 3. Results
  • a. Onion Sites Discovery
  • b. Vanity Domains
  • c. Verifying Onion Sites
  • 4. Future Directions & Conclusions

23

slide-24
SLIDE 24

How Do Users Interact with Onion Services?

24

  • What are users’ mental models of onion services?
  • How do users use and manage onion services?
  • What are the challenges of using onion services?
slide-25
SLIDE 25

How Do Users Interact with Onion Services?

25

Mixed-method user study

Interviews Survey DNS B Root Data

slide-26
SLIDE 26

How Do Users Interact with Onion Services?

26

Mixed-method user study

Interviews

  • N=17
  • Diverse

backgrounds

  • Exploratory

Survey DNS B Root Data

slide-27
SLIDE 27

How Do Users Interact with Onion Services?

27

Mixed-method user study

Interviews

  • N=17
  • Diverse

backgrounds

  • Exploratory

Survey

  • N=517
  • 49 questions (mix
  • f open-ended and

closed-ended)

  • 4 attention checks

DNS B Root Data

slide-28
SLIDE 28

How Do Users Interact with Onion Services?

28

Mixed-method user study

Interviews

  • N=17
  • Diverse

backgrounds

  • Exploratory

Survey

  • N=517
  • 49 questions (mix
  • f open-ended and

closed-ended

  • 4 attention checks

DNS B Root Data

  • ~2 days of data
  • Filtered correctly

formatted .onion domains

  • 15,471 leaked
  • nion domains
slide-29
SLIDE 29

Overview

  • 1. Onion Services Background + Features
  • 2. Methods
  • 3. Results
  • a. Onion Sites Discovery
  • b. Vanity Domains
  • c. Verifying Onion Sites
  • 4. Future Directions & Conclusions

29

slide-30
SLIDE 30

Makeshift Solutions Ease Onion Discovery

30

slide-31
SLIDE 31

Makeshift Solutions Ease Onion Discovery

31

slide-32
SLIDE 32

Makeshift Solutions Ease Onion Discovery

32

slide-33
SLIDE 33

Makeshift Solutions Ease Onion Discovery

33

slide-34
SLIDE 34

34

slide-35
SLIDE 35

35

slide-36
SLIDE 36

36

slide-37
SLIDE 37

I wasn't aware that onion site search engines exist. It's been near impossible for me to find them so far.

37

Survey Respondent (S195)

slide-38
SLIDE 38

Onion Domain Management is Chaotic

38

slide-39
SLIDE 39

Onion Domain Management is Chaotic

39

slide-40
SLIDE 40

Onion Domains are Difficult to Remember

40

slide-41
SLIDE 41

Onion Domains are Difficult to Remember

41

Meaningful prefixes appear to make remembering easier

slide-42
SLIDE 42

Phonetic pronunciation plays a large part in how I remember onions.

42

Survey Respondent (S46)

slide-43
SLIDE 43

Vanity Onion Domains

propub3r6espa33w.onion nytimes3xbfgragh.onion facebookcorewwwi.onion protonirockerxow.onion

43

slide-44
SLIDE 44

Vanity Onion Domains

propub3r6espa33w.onion nytimes3xbfgragh.onion facebookcorewwwi.onion protonirockerxow.onion

44

  • Generate onion domains

until hash resembles desired string

  • The good:

○ Hints at onion service content

  • The bad:

○ Breeds false sense of security ○ Economically unfair

slide-45
SLIDE 45

I only memorize the first part of the domain.

45

Survey Respondent (S96)

slide-46
SLIDE 46

I understand vanity onion domains are a sign of the weakness of the hash algorithm used by Tor.

46

Survey Respondent (S454)

slide-47
SLIDE 47

These people who created their onion name using scallion or other tools should notice that other people can make [the] same private key.

47

Survey Respondent (S552)

slide-48
SLIDE 48

Onion Lookups Suggest Typos or Phishing

48

hydraruzxpnew4af.onion hydraruzxpnew3af.onion

slide-49
SLIDE 49

Onion Lookups Suggest Typos or Phishing

49

hydraruzxpnew4af.onion hydraruzxpnew3af.onion

529 occurrences in DNS dataset 2 occurrences in DNS dataset

slide-50
SLIDE 50

Onion Lookups Suggest Typos or Phishing

50

hydraruzxpnew4af.onion hydraruzxpnew3af.onion

529 occurrences in DNS dataset 2 occurrences in DNS dataset Unique, correctly-formatted

  • nion domains

Jaro-Winkler similarity score Weight results by frequency

slide-51
SLIDE 51

Onion Lookups Suggest Typos or Phishing

51

slide-52
SLIDE 52

Onion Lookups Suggest Typos or Phishing

52

Russian Market DuckDuckGo The Hidden Wiki

slide-53
SLIDE 53

Onion Sites are Hard to Verify as Authentic

53

slide-54
SLIDE 54

Onion Sites are Hard to Verify as Authentic

54

slide-55
SLIDE 55

Onion Sites are Hard to Verify as Authentic

55

slide-56
SLIDE 56

Summary of Findings

  • Discovering onion services is challenging because they

are private by default

  • Vanity domains are more memorable but provide a false

sense of security

  • Users are lacking a way to verify the authenticity of onion

domains

56

slide-57
SLIDE 57

Overview

  • 1. Onion Services Background + Features
  • 2. Methods
  • 3. Results
  • a. Onion Sites Discovery
  • b. Vanity Domains
  • c. Verifying Onion Sites
  • 4. Future Directions & Conclusions

57

slide-58
SLIDE 58

Making Onion Domains More Usable

  • Make it easier for site foo.com to announce its onion

service

  • Allow onion service operators to opt-in to publishing

mechanism

  • Have Tor Browser help with encrypted bookmarks
  • Better documentation and education

58

slide-59
SLIDE 59

Conclusion

Despite extra security and privacy properties of onion services, many users are confronted with usability issues

  • Susceptibility of onion services to phishing attacks
  • Discovering the existence of onion services
  • Managing and remembering onion domains

59

slide-60
SLIDE 60

Conclusion

Despite extra security and privacy properties of onion services, many users are confronted with usability issues

  • Susceptibility of onion services to phishing attacks
  • Discovering the existence of onion services
  • Managing and remembering onion domains

We can learn from the issues users have encountered to implement design improvements

  • Better discovery mechanisms
  • Better verification mechanisms

60

slide-61
SLIDE 61

Questions?

61

More info at: https://nymity.ch/onion-services/ https://hci.princeton.edu https://citp.princeton.edu/ Sponsored by: