TOR https://media.defcon.org/DEF%20CON%2025/DEF%20CON - - PowerPoint PPT Presentation

tor
SMART_READER_LITE
LIVE PREVIEW

TOR https://media.defcon.org/DEF%20CON%2025/DEF%20CON - - PowerPoint PPT Presentation

Sep 13, 2023 620 likes •970 views

TOR https://media.defcon.org/DEF%20CON%2025/DEF%20CON %2025%20presentations/DEFCON-25-Roger-Dingledine-Next- Generation-Tor-Onion-Services-UPDATED.pdf https://metrics.torproject.org/ https://compass.torproject.org/

slide-1
SLIDE 1

TOR

https://media.defcon.org/DEF%20CON%2025/DEF%20CON %2025%20presentations/DEFCON-25-Roger-Dingledine-Next- Generation-Tor-Onion-Services-UPDATED.pdf https://metrics.torproject.org/ https://compass.torproject.org/ https://www.torproject.org/about/overview.html.en

slide-2
SLIDE 2

Threat Model

Alice Bob Anonymity Network

slide-3
SLIDE 3

Anonymity serves different interests for different users

  • private citizens
  • privacy
  • businesses
  • network security
  • governments
  • traffic-analysis resistance
  • human rights activists
  • reachability
slide-4
SLIDE 4

Simple design

Relay

Joey Phoebe Rachel Ross Chandler Monica

E(X,Chandler) E(Y,Ross) E(Z,Monica) Y X Z

slide-5
SLIDE 5

Single Point of Failure

EVIL RELAY

Joey Phoebe Rachel Ross Chandler Monica

E(X,Chandler) E(Y,Ross) E(Z,Monica) Y X Z

slide-6
SLIDE 6
slide-7
SLIDE 7
slide-8
SLIDE 8
slide-9
SLIDE 9

Question

  • In the last example, let’s say Jane is a local

business’ website run completely over http.

  • If Alice entered in her username/password into the

website, which users along the circuit could read her password?

slide-10
SLIDE 10

Usage Statistics

1 000 000 2 000 000 3 000 000 Jul−2017 Oct−2017

The Tor Project − https://metrics.torproject.org/

Directly connecting users

slide-11
SLIDE 11

Network Size

2000 4000 6000 Jul−2017 Oct−2017

The Tor Project − https://metrics.torproject.org/

Relays Bridges

Number of relays

slide-12
SLIDE 12

Types of Relays

2000 4000 6000 Jul−2017 Oct−2017

The Tor Project − https://metrics.torproject.org/ Relay flags

Running Exit Fast Guard Stable

Number of relays with relay flags assigned

slide-13
SLIDE 13

Bandwidth

50 100 150 200 2010 2011 2012 2013 2014 2015 2016 2017 2018

The Tor Project − https://metrics.torproject.org/ Bandwidth (Gbit/s)

Advertised bandwidth Bandwidth history

Total relay bandwidth

slide-14
SLIDE 14

Anonymity vs Security

  • Anonymity: safety in numbers
  • diversity in users
  • diversity in relays
  • Security: safety in heterogeneity
slide-15
SLIDE 15

Anonymity vs Security

  • Open source
  • Public design documents
  • Design peer reviewed
slide-16
SLIDE 16

Onion Services

  • Authenticated
  • End-to-end encryption
  • Limit surface area
  • No need to “exit” from TOR
  • No need for anybody to know where it is or who

runs it

slide-17
SLIDE 17
slide-18
SLIDE 18
slide-19
SLIDE 19
slide-20
SLIDE 20
slide-21
SLIDE 21
slide-22
SLIDE 22

29

slide-23
SLIDE 23

30

slide-24
SLIDE 24
slide-25
SLIDE 25
slide-26
SLIDE 26
slide-27
SLIDE 27
slide-28
SLIDE 28
slide-29
SLIDE 29
slide-30
SLIDE 30

Onion keys are getting bigger

  • From 16 characters:
  • the first 80 bits of the SHA-1 of the 1024 RSA key
  • … to 52 characters:
  • ED25519 public key base32 encoded
slide-31
SLIDE 31
slide-32
SLIDE 32
slide-33
SLIDE 33