Anonymity with Tor: A Survey on Tor Attacks Ishan Karunanayake1,2,*, Nadeem Ahmed1,2, Robert Malaney1,2, Rafiqul Islam1,3, and Sanjay Jha1,2 1Cyber Security Cooperative Research Centre (CSCRC) - Australia 2University of New South Wales (UNSW) - Sydney, Australia 3Charles Sturt University - Albury, Australia *Corresponding author -
[email protected] Abstract—Anonymity networks are becoming increasingly pop- their classification. To overcome this issue, we use a common ular in today’s online world as more users attempt to safeguard determiner for every layer of our taxonomy and clearly define their online privacy. Tor is currently the most popular anonymity the scope of each category. Several other survey works [12], network in use and provides anonymity to both users and services (hidden services). However, the anonymity provided by [13], [11], [14], lack details of website fingerprinting attacks Tor is also being misused in various ways. Hosting illegal sites or attacks on hidden services which are very important types for selling drugs, hosting command and control servers for of Tor attacks. botnets, and distributing censored content are but a few such Being an anonymity network, the most common objective of examples. As a result, various parties, including governments and a Tor attack is to de-anonymise its users and services. Since law enforcement agencies, are interested in attacks that assist in de-anonymising the Tor network, disrupting its operations, Tor’s initial deployment, researchers have worked to further and bypassing its censorship circumvention mechanisms. In this strengthen its anonymity objectives. Here, we try to present paper, we survey known Tor attacks and identify currently an extensive list of de-anonymisation attacks and discuss their available techniques that lead to improved de-anonymisation of feasibility in the live Tor network.