the tor project
play

The Tor Project Our mission is to be the global resource for - PowerPoint PPT Presentation

Feb 22, 2024 •217 likes •544 views

The Tor Project Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1 What is Tor? Online anonymity 1)

  1. The Tor Project Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1

  2. What is Tor? Online anonymity 1) open source software, 2) network, 3) protocol Community of researchers, developers, users, and relay operators Funding from US DoD, Electronic Frontier Foundation, Voice of America, Google, NLnet, Human Rights Watch, NSF, US State Dept, SIDA, Knight Foundation, ... 2

  3. The Tor Project, Inc. 501(c)(3) non-profit organization dedicated to the research and development of tools for online anonymity and privacy 3

  4. Estimated 1,000,000+ daily Tor users 4

  5. Threat model: what can the attacker do? Alice Anonymity network Bob watch Alice! watch (or be!) Bob! Control part of the network! 5

  6. Anonymity isn't encryption: Encryption just protects contents. “Hi, Bob!” “Hi, Bob!” <gibberish> Alice attacker Bob 6

  7. Anonymity serves different interests for different user groups. “It's reachability!” Human rights “It's traffic-analysis activists resistance!” Businesses Governments Anonymity “It's network security!” Private citizens “It's privacy!” 7

  8. Current situation: Bad people on the Internet are doing fine Trojans Viruses Exploits Botnets Zombies Espionage Phishing DDoS Spam Extortion 8

  9. The simplest designs use a single relay to hide connections. Bob1 Alice1 E(Bob3,“X”) “Y” Relay Alice2 “Z” Bob2 E(Bob1, “Y”) ) “X” ” Z “ , 2 b o B ( E Bob3 Alice3 (example: some commercial proxy providers) 9

  10. But a single relay (or eavesdropper!) is a single point of failure. Bob1 Alice1 E(Bob3,“X”) “Y” Evil Alice2 Relay “Z” Bob2 E(Bob1, “Y”) ) “X” ” Z “ , 2 b o B ( E Bob3 Alice3 10

  11. ... or a single point of bypass. Bob1 Alice1 E(Bob3,“X”) “Y” Irrelevant Alice2 Relay “Z” Bob2 E(Bob1, “Y”) ) “X” ” Z “ , 2 b o B ( E Bob3 Alice3 Timing analysis bridges all connections ⇒ An attractive fat target through relay 11

  12. So, add multiple relays so that no single one can betray Alice. Bob Alice R1 R3 R5 R4 R2 12

  13. Alice makes a session key with R1 ...And then tunnels to R2...and to R3 Bob Alice R1 R3 Bob2 R5 R4 R2 13

  14. 14

  15. 15

  16. Tor's safety comes from diversity ● #1: Diversity of relays. The more relays we have and the more diverse they are, the fewer attackers are in a position to do traffic confirmation. (Research problem: measuring diversity over time) ● #2: Diversity of users and reasons to use it. 50000 users in Iran means almost all of them are normal citizens. 16

  17. Tor's anonymity comes from... ● The first 1,000 relays (location diversity) ● The first 100,000 users (user diversity) ● The last 1,000,000 users (end-to-end correlation resistance) 17

  18. 18

  19. Attackers can block users from connecting to the Tor network 1) By blocking the directory authorities 2) By blocking all the relay IP addresses in the directory, or the addresses of other Tor services 3) By filtering based on Tor's network fingerprint 4) By preventing users from finding the Tor software (usually by blocking website) 19

  20. 20

  21. 21

  22. 22

  23. Pluggable transports 23

  24. Two paradigms ● “Look like nothing” ● “Look like something they expect” ● Active probing: what should your service look like if the client doesn't auth right? ● “Be not there” vs “Be innocent service” 24

  25. Pluggable transports ● Flashproxy (Stanford), websocket ● FTEProxy (Portland St), http via regex ● Stegotorus (SRI/CMU), http ● Skypemorph (Waterloo), Skype video ● uProxy (Google/UW), webrtc ● Lantern (BNS), social network based ● ScrambleSuit (Karlstad), obfs-based ● Telex (Michigan/Waterloo), traffic divert 25

  26. 26

  27. GOOGLE INFRASTRUCTURE www.google.com maps.google.com USER’S PC drive.google.com Browser gmail.com HTTPS SNI: www.google.com ... tor (front domain) TOR BRIDGE Host: meek-reflect.appspot.com Google (actual destination) HTTP meek-reflect meek-server meek-client frontend .appspot.com server tor INTERNET 27

  28. 28

  29. “Still the King of high secure, low latency Internet Anonymity” Contenders for the throne: ● None 29

  30. 30

  31. Pervasive surveillance ● Design changes to improve robustness ● Internet is more centralized than we'd like ● Defending against end-to-end correlation attacks is a good idea in theory ● Surveillance (DPI) and censorship (DPI) more related than we realized 31

  32. 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Project Project Project Evolution of project Structured Collaborative Project Unstructured

Project Project Project Evolution of project Structured Collaborative Project Unstructured

Alain Fournier Presentation: Project Management Tools for Increasing Project Success! Alain is a Project and Portfolio Management Solutions Executive with Microsoft Canada specializing in Cloud Productivity Solutions Have over 20 years of

428 views • 21 slides
evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A

evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A

Effective post project evaluations An unsuccessful project? An unsuccessful project? An unsuccessful project? A successful project? Agenda for today Who are LCMB? The context for post project evaluation The project lifecycle Post project

476 views • 32 slides
BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title:

BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title:

BPR4GDPR Project Presentation Project ID Project acronym: BPR4GDPR Project title: Business Process Re-engineering and functional toolkit for GDPR compliance Contract number: 787149 Funded under the H2020 call DS-08-2017

421 views • 22 slides
HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT

HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT

HHS // IHS HIT MODERNIZATION PROJECT HHS // IHS HIT Modernization Project PROJECT PURPOSE The HHS IHS HIT Modernization Project is sponsored by the U.S. Department of Health and Human Services Office of the Chief Technology Officer (HHS OCTO)

712 views • 13 slides
NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization

NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization

2 nd Annual Rural Community Development Initiative Capacity Building and Wood Utilization Workshop NORTH FORK BIOENERGY PROJECT PROJECT STATUS Project Overview Project Team and Organization Major Milestones Accomplishments

631 views • 12 slides
2013 Project Excellence Awards Project Requirements In-house design project Project

2013 Project Excellence Awards Project Requirements In-house design project Project

2013 Project Excellence Awards Project Requirements In-house design project Project constructed or near completion Judging Criteria Unique design considerations Constructability Post-construction performance Stakeholder

682 views • 29 slides
This project goes under eight different steps. This project goes under eight different steps.

This project goes under eight different steps. This project goes under eight different steps.

This project goes under eight different steps. This project goes under eight different steps. Chapter One: The first step is about narrating some facts, by which my project and research were based on. Egypt is located in north east africa,

690 views • 46 slides
Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE

Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE

Agenda 1. Introductions 2. Sign-in 3. Project Location 4. Project Background 5. POE Drainage Alternatives 6. Project Benefits 7. Open Forum 8. Adjourn Project Location Project Background ASCG Inc. completed a Project Development

321 views • 15 slides
Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project

Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project

Minimum Spanning Data Structures and Trees Algorithms CSE 373 SU 18 BEN JONES 1 Announcements - Project 3 Due Tonight - Project 4 Assigned Today - Same partners as project 3 - We will re-run project 3 grading on project 4, just like the

704 views • 59 slides
Presentation Agenda Project History/Background Project Overview Current Project Status

Presentation Agenda Project History/Background Project Overview Current Project Status

Presentation Agenda Project History/Background Project Overview Current Project Status Project Opportunities 1 1 Pre-Solicitation Conference June 2018 www.newnicebridge.com 2 Welcome and Introductions Project Team MDTA

776 views • 38 slides
1 We will begin with some background information on the project. We will then talk about why we

1 We will begin with some background information on the project. We will then talk about why we

Welcome. My name is Mark Frechette. I am the project director for the New York State Department of Transportations (NYSDOT) I 81 Viaduct Project. Thank you for being here tonight. The project team has been working hard and we are excited to

548 views • 39 slides
I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0

I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0

I-84 Danbury Project Project Advisory Committee (PAC) Meeting No. 3 September 24, 2019 0 Agenda PAC Membership and Recap of Outreach Efforts Perspective Gathering Exercise Project Need Project Need Check-in Project Purpose

940 views • 54 slides
PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project

PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project

WETLAND &amp; RIPARIAN INVENTORIES FOR UGB EXPANSION AREAS PROJECT INFORMATION SESSION May 14, 2020 TOPICS TO COVER Project Purpose Project Approach Who is Involved What is Needed to Make it Happen How the Project Will

581 views • 46 slides
ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project

ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project

ORMONDE MINING BARRUECOPARDO TUNGSTEN PROJECT Project Permitted Project Funded Project Upside Mar 2017 1 ORMONDE MINING Disclaimer The content of this document has not been approved by an authorised person within the meaning of the

712 views • 21 slides
Unit 10 The World of Project Management and The Role of Project Manager The Role of Project

Unit 10 The World of Project Management and The Role of Project Manager The Role of Project

Unit 10 The World of Project Management and The Role of Project Manager The Role of Project Manager Source: Project Management in Practice, 4th Edition, Mantel, Meredith, Shafer, Sutton, Wiley, 2011. Project Management: A Systems Approach to

712 views • 32 slides
Project Management Project Management A project is a temporary endeavour to produce a unique

Project Management Project Management A project is a temporary endeavour to produce a unique

Project Management Project Management A project is a temporary endeavour to produce a unique product, service, or result (PMI 2004). Project management (PM) techniques were originally developed Dr. James A. Bednar for waterfall-type

226 views • 4 slides
A x i o n T h o u g h t s : A x i o n T h o u g h t s : i . e . w

A x i o n T h o u g h t s : A x i o n T h o u g h t s : i . e . w

A x i o n T h o u g h t s : A x i o n T h o u g h t s : i . e . w h a t w e / I d o n t y e t u n d e r s t a n d a b o u t Q C D A x i o n D M i . e . w h a t w e

928 views • 79 slides
Preventing Oh Shit Moments for 20 or Less Philip A. Polstra, Sr. University of Dubuque

Preventing Oh Shit Moments for 20 or Less Philip A. Polstra, Sr. University of Dubuque

Preventing Oh Shit Moments for 20 or Less Philip A. Polstra, Sr. University of Dubuque Roadmap Why this talk? Brief history of USB How does USB work? Its all descriptors and endpoints Bulk-only Mass Storage

1.15k views • 59 slides
Physics 2D Lecture Slides Jan 21 Vivek Sharma UCSD Physics Particle Accelerators as Testing

Physics 2D Lecture Slides Jan 21 Vivek Sharma UCSD Physics Particle Accelerators as Testing

Physics 2D Lecture Slides Jan 21 Vivek Sharma UCSD Physics Particle Accelerators as Testing ground for S. Relativity When Electron Goes Fast it Gets Fat = 2 E mc v As 1, c Apparent Mass approaches

280 views • 17 slides
Optimal ancilla-free Clifford+T approximation of z-rotations QIP 2015 Neil J. Ross and Peter

Optimal ancilla-free Clifford+T approximation of z-rotations QIP 2015 Neil J. Ross and Peter

Optimal ancilla-free Clifford+T approximation of z-rotations QIP 2015 Neil J. Ross and Peter Selinger Dalhousie University, Halifax, Canada 1 Gate complexity, in numbers. Precision Solovay-Kitaev Lower bound O ( log 3.97 ( 1/ )) 3 log 2 (

1.01k views • 58 slides
Physics 2D Lecture Slides Oct 8 Vivek Sharma UCSD Physics Definition (without proof) of

Physics 2D Lecture Slides Oct 8 Vivek Sharma UCSD Physics Definition (without proof) of

Physics 2D Lecture Slides Oct 8 Vivek Sharma UCSD Physics Definition (without proof) of Relativistic Momentum With the new definition relativistic mu = = p mu momentum is conserved in all frames 2 1 ( / ) u c of

635 views • 24 slides
Romans Series Lesson #118 October 10, 2013 Dean Bible Ministries www.deanbible.org Dr. Robert

Romans Series Lesson #118 October 10, 2013 Dean Bible Ministries www.deanbible.org Dr. Robert

Romans Series Lesson #118 October 10, 2013 Dean Bible Ministries www.deanbible.org Dr. Robert L. Dean, Jr. The Epistle to the ROMANS Confessing Unto Salvation: The Deliverance of Israel and Gentiles, too!!! Romans 10: 6 13 Romans

717 views • 38 slides
ECE 327: Digital Systems Engineering Lecture Slides 2020t1 (Winter) Mark Aagaard University of

ECE 327: Digital Systems Engineering Lecture Slides 2020t1 (Winter) Mark Aagaard University of

ECE 327: Digital Systems Engineering Lecture Slides 2020t1 (Winter) Mark Aagaard University of Waterloo Department of Electrical and Computer Engineering ii CONTENTS iv 1.3.2 Library Units . . . . . . . . . . . . . . . . . . . . . . . . . .

2.75k views • 169 slides
bwHPC: Hardware and Storage Architecture Peter Weisbrod, SCC, KIT Steinbuch Centre for Computjng

bwHPC: Hardware and Storage Architecture Peter Weisbrod, SCC, KIT Steinbuch Centre for Computjng

bwHPC: Hardware and Storage Architecture Peter Weisbrod, SCC, KIT Steinbuch Centre for Computjng (SCC) www.bwhpc-c5.de Funding: Reference: bwHPC-C5 Best Practjces Repository Most informatjon given by this talk can be found at

833 views • 26 slides

More recommend