the tor project inc
play

The Tor Project, Inc. Our mission is to be the global resource for - PowerPoint PPT Presentation

Oct 11, 2023 •210 likes •614 views

The Tor Project, Inc. Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1 2 3 4 5 6 7 8 When we

  1. The Tor Project, Inc. Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1

  2. 2

  3. 3

  4. 4

  5. 5

  6. 6

  7. 7

  8. 8

  9. When we wrote the SAFER proposal ● Iran ran default-config Smartfilter ● China had blocked public Tor relays; vanilla bridges worked great there ● China did stateless regexp on TCP payload ● Tor was blending with SSL, because “who would block SSL” ● Before Tunisia, Egypt, Libya, Syria, ... 9

  10. 10

  11. 11

  12. Tor Controller Interface ● stem ● pytorctl ● jtorctl ● txtorcon 12

  13. Tor network simulators ● Shadow ● ExperimenTor ● Chutney ● Puppetor 13

  14. 14

  15. compass.torproject.org 15

  16. Orbot 16

  17. Tails LiveCD 17

  18. Pluggable transports 18

  19. 19

  20. “Fronting” ● Google ● Amazon S3 ● Cloudflare ● Akamai 20

  21. Obfs4 ● Obfs3 used UniformDH, CTR-AES256, HMAC-SHA256 ● Obfs4 uses Curve25519, Elligator2, HMAC-SHA256, XSalsa20/Poly1305, Siphash ● Go, C++, Python implementations (so all the Orbot users in Turkey can use it) 21

  22. uProxy ● Google + UW collaboration ● Discovery: Google Plus contacts – But only one hop away (abuse) ● Transport: WebRTC (udp + sctp) 22

  23. Composing and layering Transport App (Tor) Transform 23

  24. Composing and layering Transport App (Tor) Transform Transform App (uProxy) Transport 24

  25. Composing and layering Transport App (Tor) Transform Transform App (uProxy) Transport 25

  26. 26

  27. Two paradigms ● “Look like nothing” ● “Look like something they expect” ● Active probing: what should your service look like if the client doesn't auth right? ● “Be not there” vs “Be innocent service” 27

  28. Criteria for judging Pts (1) How reviewed / reviewable is it? ● 1) Is the software published? Is it entirely free / open source? (Skype, Windows) ● 2) Published design doc, w/ threat model? Spec? How much peer review? ● 3) What is its deployment history? Past publicity, number of users, etc. 28

  29. Criteria for judging Pts (2) Evaluation of design ● 4) How difficult/expensive will it be to block (by protocol, by endpoints, etc) ● 5) What anonymity impacts does it have? ● 6) What's the bandwidth overhead? ● 7) How does it fare against active probing? 29

  30. Criteria for judging Pts (3) Evaluation of implementation ● 8) Does it use Tor's PT API already? ● 9) Cross-platform, including mobile? ● 10) How easy is the build process? Includes dependencies, deployment scale ● 11) Is the code secure and maintainable? 30

  31. Measurement Lab / Adversary Lab ● We need a set of benchmarks (“Iran 2011”) to test against – real attacks that we want to know how a given design fares against ● Background traffic issue ● Assessment needs to describe attributes, not conclusions. “China can't block this” vs “An adversary who does X would choose not to block this” 31

  32. Measurement Framework Need to extend the framework to include: ● Probing / active attacks – We need probe vectors! Skype connections, web connections, Tor connections, etc ● Pass traffic through transparent proxies 32

  33. OONI: Measuring interference in the wild ● Measuring censorship of destinations and protocols ● But just as importantly, preemptively tracking which protocols work where 33

  34. Discovering blocking rules ● Imagine you have a trace that gets blocked, and a trace that doesn't get blocked ● And you can generate new traces and I'll classify them for you ● “Active learning” from ML literature 34

  35. Techniques to slow down learning: take the feedback out of the loop ● China only samples traffic during periods of high load, so it misses some ● Censorship triggers a ten minute black hole ● DPI triggers active probing later ● Throttling makes classification fuzzy ● Is your vantage point representative? 35

  36. Other outstanding issues: GetTor ● How to fetch Tor browser if torproject.org is blocked? ● Easy, but: how do you verify the signature? ● Easy, but: how do you download gnupg? ● Satori uses browser extension to check sigs, https github/S3/etc to fetch software 36

  37. Three ways to destroy Tor ● 1) Legal / policy attacks ● 2) Make ISPs hate hosting exit relays ● 3) Make services hate Tor connections – Yelp, Wikipedia, Google, Skype, … ● #3 is getting worse due to centralization (Akamai, Cloudflare) and to outsourcing blacklists 37

  38. Anonymity analysis ● The Internet is more centralized than we'd like ● Guard churn issue is huge ● Website fingerprinting not such a big deal due to false positives at scale? ● Application-level security still key 38

  39. “Still the King of high secure, low latency Internet Anonymity” Contenders for the throne: ● None 39

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Project Project Project Evolution of project Structured Collaborative Project Unstructured

Project Project Project Evolution of project Structured Collaborative Project Unstructured

Alain Fournier Presentation: Project Management Tools for Increasing Project Success! Alain is a Project and Portfolio Management Solutions Executive with Microsoft Canada specializing in Cloud Productivity Solutions Have over 20 years of

428 views • 21 slides
evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A

evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A

Effective post project evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A successful project? Agenda for today Who are LCMB? The context for post project evaluation The project lifecycle Post project

476 views • 32 slides
BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title:

BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title:

BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title: Business Process Re-engineering and functional toolkit for GDPR compliance Contract number: 787149 Funded under the H2020 call DS-08-2017

421 views • 22 slides
HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT

HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT

HHS // IHS HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT Modernization Project is sponsored by the U.S. Department of Health and Human Services Office of the Chief Technology Officer (HHS OCTO)

712 views • 13 slides
NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization

NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization

2 nd Annual Rural Community Development Initiative Capacity Building and Wood Utilization Workshop NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization Major Milestones Accomplishments

631 views • 12 slides
2013 Project Excellence Awards Project Requirements In-house design project Project

2013 Project Excellence Awards Project Requirements In-house design project Project

2013 Project Excellence Awards Project Requirements In-house design project Project constructed or near completion Judging Criteria Unique design considerations Constructability Post-construction performance Stakeholder

682 views • 29 slides
This project goes under eight different steps. This project goes under eight different steps.

This project goes under eight different steps. This project goes under eight different steps.

This project goes under eight different steps. This project goes under eight different steps. Chapter One: The first step is about narrating some facts, by which my project and research were based on. Egypt is located in north east africa,

690 views • 46 slides
Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE

Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE

Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE Drainage Alternatives 6. Project Benefits 7. Open Forum 8. Adjourn Project Location Project Background ASCG Inc. completed a Project Development

321 views • 15 slides
Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project

Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project

Minimum Spanning Data Structures and Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project 4 Assigned Today - Same partners as project 3 - We will re-run project 3 grading on project 4, just like the

704 views • 59 slides
Presentation Agenda Project History/Background Project Overview Current Project Status

Presentation Agenda Project History/Background Project Overview Current Project Status

Presentation Agenda Project History/Background Project Overview Current Project Status Project Opportunities 1 1 Pre-Solicitation Conference June 2018 www.newnicebridge.com 2 Welcome and Introductions Project Team MDTA

776 views • 38 slides
1 We will begin with some background information on the project. We will then talk about why we

1 We will begin with some background information on the project. We will then talk about why we

Welcome. My name is Mark Frechette. I am the project director for the New York State Department of Transportations (NYSDOT) I 81 Viaduct Project. Thank you for being here tonight. The project team has been working hard and we are excited to

548 views • 39 slides
I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0

I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0

I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0 Agenda PAC Membership and Recap of Outreach Efforts Perspective Gathering Exercise Project Need Project Need Check-in Project Purpose

940 views • 54 slides
PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project

PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project

WETLAND & RIPARIAN INVENTORIES FOR UGB EXPANSION AREAS PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project Approach Who is Involved What is Needed to Make it Happen How the Project Will

581 views • 46 slides
ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project

ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project

ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project Upside Mar 2017 1 ORMONDE MINING Disclaimer The content of this document has not been approved by an authorised person within the meaning of the

712 views • 21 slides
Unit 10 The World of Project Management and The Role of Project Manager The Role of Project

Unit 10 The World of Project Management and The Role of Project Manager The Role of Project

Unit 10 The World of Project Management and The Role of Project Manager The Role of Project Manager Source: Project Management in Practice, 4th Edition, Mantel, Meredith, Shafer, Sutton, Wiley, 2011. Project Management: A Systems Approach to

712 views • 32 slides
Project Management Project Management A project is a temporary endeavour to produce a unique

Project Management Project Management A project is a temporary endeavour to produce a unique

Project Management Project Management A project is a temporary endeavour to produce a unique product, service, or result (PMI 2004). Project management (PM) techniques were originally developed Dr. James A. Bednar for waterfall-type

226 views • 4 slides
Experiences in Intel SGX research Dongsu Han and Seongmin Kim KAIST Joint work with: Changho

Experiences in Intel SGX research Dongsu Han and Seongmin Kim KAIST Joint work with: Changho

Experiences in Intel SGX research Dongsu Han and Seongmin Kim KAIST Joint work with: Changho Choi, Soham Desai*, Juhyeng Han, Jaehyung Ha, Prerit Jain*, JaeHyuk Lee, Youjung Shin, Brent Byounghoon Kang and Taesoo Kim* * APNet 2017 1 Trend 1:

741 views • 60 slides
Collinear and TMD densities from Parton Branching Method Ola Lelek 1 , Francesco Hautmann 2 ,

Collinear and TMD densities from Parton Branching Method Ola Lelek 1 , Francesco Hautmann 2 ,

Collinear and TMD densities from Parton Branching Method Ola Lelek 1 , Francesco Hautmann 2 , Hannes Jung 1 , Voica Radescu 3 , Radek lebk 1 1 DESY 2 University of Oxford 3 CERN Resummation, Evolution, Factorization 2017 Madrid

520 views • 26 slides
Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has

Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has

Normal and minimal surfaces The correspondence between normal surfaces and minimal surfaces has more applications. It can be used to investigate classical problems in Differential Geometry. Classical Isoperimetric Inequality: A curve in R 2

1.14k views • 79 slides
Uncertainty-Aware Food Recognition by Deep Learning Petia Radeva, Collaboration with: Eduardo

Uncertainty-Aware Food Recognition by Deep Learning Petia Radeva, Collaboration with: Eduardo

Uncertainty-Aware Food Recognition by Deep Learning Petia Radeva, Collaboration with: Eduardo Aguilar, Marc Bolaos University of Barcelona & Computer Vision Center radevap@gmail.com 11:01 The Diabetes pandemy Diabetic people need to

907 views • 51 slides
The Tor Project, Inc. Our mission is to be the global resource for technology, advocacy, research

The Tor Project, Inc. Our mission is to be the global resource for technology, advocacy, research

The Tor Project, Inc. Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1 What is Tor? Online anonymity

979 views • 70 slides
Explain the difference between a simile and a metaphor 1 Lesson 21 lesson writing.notebook May

Explain the difference between a simile and a metaphor 1 Lesson 21 lesson writing.notebook May

Lesson 21 lesson writing.notebook May 12, 2020 Date: L.O.To use instructional writing to write a recipe Bronze Convert similes into metaphors Silver Think of a metaphor to describe these pictures Gold Write three metaphors to describe

353 views • 12 slides
Managing Hyperlipidemia: Update 2020 Dedra Hayden, DNP, ANP, APRN-BC Disclosures Dedra

Managing Hyperlipidemia: Update 2020 Dedra Hayden, DNP, ANP, APRN-BC Disclosures Dedra

Managing Hyperlipidemia: Update 2020 Dedra Hayden, DNP, ANP, APRN-BC Disclosures Dedra Hayden, DNP, ANP, APRN-BC Full-Time Faculty Member University of Louisville, School of Nursing Primary Care Provider Kentucky Racing Health

688 views • 47 slides
2000-2016: Dal bortezomib ai nuovi inibitori del proteasoma

2000-2016: Dal bortezomib ai nuovi inibitori del proteasoma

2000-2016: Dal bortezomib ai nuovi inibitori del proteasoma Elena Zamagni Istituto di Ematologia Sergnoli Universit degli Studi di Bologna Meldola, 24 Settembre 2016 PROTEASOMA

666 views • 39 slides

More recommend