DOCSLIB.ORG

Tor: a Quick Overview

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Tor: a Quick Overview Tor: a quick overview Roger Dingledine The Tor Project https://torproject.org/ 1 What is Tor? ● Online anonymity software and network ● Open source, freely available ● Community of researchers, developers, users, and relay operators 2 The Tor Project, Inc. ● 501(c)(3) non-profit organization dedicated to the research and development of tools for online anonymity and privacy 3 Estimated 300,000 daily Tor users 4 Threat model: what can the attacker do? Alice Anonymity network Bob watch Alice! watch (or be!) Bob! Control part of the network! 5 Anonymity isn©t cryptography: Cryptography just protects contents. “Hi, Bob!” “Hi, Bob!” Alice <gibberish> attacker Bob 6 Anonymity isn©t just wishful thinking... “You can't prove it was me!” “Promise you won't look!” “Promise you won't remember!” “Promise you won't tell!” “I didn't write my name on it!” “Isn't the Internet already anonymous?” 7 Anonymity serves different interests for different user groups. Anonymity “It's privacy!” Private citizens 8 Anonymity serves different interests for different user groups. Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 9 Anonymity serves different interests for different user groups. “It's traffic-analysis resistance!” Governments Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 10 Anonymity serves different interests for different user groups. Human rights “It's reachability!” “It's traffic-analysis activists resistance!” Governments Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 11 Regular citizens don't want to be watched and tracked. Blogger Hostile Bob “I sell the logs.” Alice 8-year-old Incompetent Bob “Oops, I lost the logs.” Alice The AOL fiasco Sick Indifferent Bob “Hey, they aren't Alice my secrets.” Name, address, Consumer age, friends, (the network can track too) Alice interests (medical, financial, etc), Union unpopular opinions, member illegal opinions.... 12 Law enforcement needs anonymity to get the job done. Investigated “Why is alice.localpolice.gov reading suspect my website?” Officer Sting “Why no, alice.localpolice.gov! Alice target I would never sell counterfeits on ebay!” Organized “Is my family safe if I Crime go after these guys?” Witness/informer Anonymous “Are they really going to ensure Alice tips my anonymity?” 13 Businesses need to protect trade secrets ... and their customers “Oh, your employees are reading Competitor our patents/jobs page/product sheets?” “Hey, it's Alice! Give her the 'Alice' version!” Competitor AliceCorp “Wanna buy a list of Alice's suppliers? Compromised What about her customers? network What about her engineering department's favorite search terms?” 14 Governments need anonymity for their security “What will you bid for a list of Baghdad Untrusted IP addresses that get email from .gov?” Agent ISP Alice “Somebody in that hotel room just checked his Navy.mil mail!” Compromised “What does FBI Google for?” service “Do I really want to reveal my internal network topology?” Coalition Shared “Do I want all my partners to know member network extent/pattern of my comms with other Alice Defense in partners? Depth “What about insiders?” 15 Governments need anonymity for their security “How can I securely and quickly Homeland exchange vital info with every security sheriff's dept and Hazmat transporter network Govt. without bringing them into my secure web server network? Bob “Do I want every SIPRNET node to Defense in know where all the traffic on it is headed?” Depth “Can I hide where my MLS chat Hidden server/my automated regrader is?” Services Can my servers resist DDoS and physical attack even by authorized users?” 16 Journalists and activists need Tor for their personal safety Monitoring “Did you just post to that website?” ISP Activist/ Whistleblower Alice “Where are the bloggers connecting from?” Monitored “I run livejournal and track my users” website “Of course I tell China about my users” “What does the Global Voices website Filtered say today?” Blocked website “I want to tell people what's going on Alice in my country” Monitored “I think they're watching. I'm not even network going to try.” 17 18 You can't get anonymity on your own: private solutions are ineffective... Citizen Alice's small ... “One of the 25 users Alice anonymity net on AliceNet.” Officer Municipal Investigated Alice anonymity net suspect “Looks like a cop.” AliceCorp AliceCorp “It's somebody at anonymity net Competitor AliceCorp!” 19 ... so, anonymity loves company! Citizen ... “???” Alice Officer Investigated Alice Shared suspect “???” anonymity net AliceCorp Competitor “???” 20 Yes, bad people need anonymity too. But they are already doing well. Compromised botnet Stolen mobile phones Evil Criminal Alice Open wireless nets ..... 21 Current situation: Bad people on the Internet are doing fine Trojans Viruses Exploits Botnets Zombies Espionage DDoS Spam Phishing Extortion 22 The simplest designs use a single relay to hide connections. Bob1 Alice1 E(Bob3,“X”) “Y” Relay Alice2 E(Bob1, “Y”) “Z” Bob2 “X” Alice3 E(Bob2, “Z”) Bob3 (example: some commercial proxy providers) 23 One relay is a single point of failure. Bob1 Alice1 E(Bob3,“X”) “Y” Evil Alice2 E(Bob1, “Y”) Relay “Z” Bob2 “X” Alice3 E(Bob2, “Z”) Bob3 24 ... or a single point of bypass. Bob1 Alice1 E(Bob3,“X”) “Y” Irrelevant Alice2 E(Bob1, “Y”) Relay “Z” Bob2 “X” Alice3 E(Bob2, “Z”) Bob3 Timing analysis bridges all connections through relay ⇒ An attractive fat target 25 So, add multiple relays so that no single one can betray Alice. Alice Bob R1 R3 R4 R5 R2 26 A corrupt first hop can tell that Alice is talking, but not to whom. Alice Bob R1 R3 R4 R5 R2 27 A corrupt final hop can tell that somebody is talking to Bob, but not who. Alice Bob R1 R3 R4 R5 R2 28 Alice makes a session key with R1 ...And then tunnels to R2...and to R3 Alice Bob R1 R3 Bob2 R4 R5 R2 29 Snooping on Exit Relays ● Lots of press in 2007 about people watching traffic coming out of Tor. ● If you want end-to-end encryption (like https), then you need to get it separately. ● Tor hides your location; it doesn't magically encrypt all traffic on the Internet. ● Though Tor does protect from your local network. 30 Javascript, cookies, history, etc ● Javascript refresh attack ● Cookies, History, browser window size, user-agent, language, http auth, ... ● Mike Perry's Torbutton extension for Firefox fixes many of these, but not all 31 Flash is dangerous too ● Some apps are bad at obeying their proxy settings. ● Adobe PDF plugin. Flash. Other plugins. Extensions. Especially Windows stuff: did you know that Microsoft Word is a network app? 32 Choose how to install it ● Tor Browser Bundle: standalone Windows exe with Tor, Vidalia, Firefox, Torbutton, Polipo, e.g. for USB stick ● Vidalia bundle: Windows/OSX installer ● Tor VM: Transparent proxy for Windows ● “Net installer” via our secure updater ● Incognito Linux LiveCD 33 Usability for relay operators is key. ● Rate limiting: shouldn't eat too much bandwidth ● Exit policies: not everyone is willing to emit arbitrary traffic. allow 18.0.0.0/8:* allow *:22 allow *:80 reject *:* 34 35 36 The basic Tor design uses a simple centralized directory protocol. cache S1 Trusted directory Alice S2 Alice downloads Trusted directory consensus and cache descriptors from anywhere Authorities S3 Servers publish publish a consensus self-signed list of all descriptors descriptors. 37 Governments and other firewalls can just block the whole Tor network. S Alice S X S Alice X S 38 Alice Alice Alice Blocked Alice User Alice R3 Blocked Alice R4 User Bob Alice Blocked R2 User Alice R1 Blocked Alice User Alice Alice Blocked Alice User Alice Alice 39 40 Problem: Abusive users get the whole network blocked. Nice /. Alice X Tor network Jerk X Alice wikipedia X Some IRC networks Minimize scope of blocking? 41 Some abuses we©ve seen ● Ransom note via Hotmail ● Spam via Google Groups ● IRC jerks → DDoS on Tor relay ● Somebody downloads a Vin Diesel movie ● Wikipedia, Slashdot block posts 42 Tor is only a piece of the puzzle ● Assume the users aren't attacked by their hardware and software – No spyware installed, no cameras watching their screens, etc ● Assume the users can fetch a genuine copy of Tor: from a friend, via PGP signatures, etc. 43 Community ● Many tools make a big splash in the press – Censors need to feel in control; publicity removes the appearance of control ● Increase community diversity – Strong social network ● Funding – Donations, grants, contracts 44 3-Year Development Roadmap ● Improve Performance ● Client Safety ● Ease of Use and Understanding ● Core Research & Development https://torproject.org/press/ for details 45 Lessons? ● 1) Bad people don't need Tor. They're doing fine. ● 2) Honest people need more security/privacy/anonymity. ● 3) Law enforcement can benefit from it too. ● 4) Tor is not unbreakable. 46 Suggestions: Run a Tor node ● General Caveat: All advice is that of a theory guy with a PhD in Philosophical Logic That said... ● Run a Tor node (preferably on a firewall) – enclave communications to/from Tor protected – CAVEAT: An adversary that watches everything on your internet connection and the other end will see who communicates with that Tor node 47 Suggestion: Know your network ● Most exit nodes run by people who want to defend: democracy, privacy, consumers, crime victims, dissidents, bloggers, etc. – most do this on principle: at varying risk to themselves and their property – please be aware of impact on volunteer operators of watching/interacting with bad guys over Tor network – please be aware of Tor (and open relays and botnets) if only identifier you have to investigate is a network address – Talk to me or Tor Project whenever you can 48 Suggestions: Know your adversary ● Destination adversary: lock down applications, etc.
Load more

Recommended publications
  • Fraud and the Darknets
    OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division Fraud And The Darknets Thomas Harper Assistant Special Agent in Charge Technology Crimes Division OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division What is an OIG? • Established by Congress • Independent agency that reports to Congress • Agency head appointed by the President and confirmed by Congress • Mission: protect the taxpayer’s interests by ensuring the integrity and efficiency of the associated agency OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division Technology Crimes Division • Investigate criminal cyber threats against the Department’s IT infrastructure, or • Criminal activity in cyber space that threatens the Department’s administration of Federal education assistance funds • Investigative jurisdiction encompasses any IT system used in the administration of Federal money originating from the Department of Education. OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division Work Examples • Grade hacking • Computer Intrusions • Criminal Forums online selling malware • ID/Credential theft to hijack Student Aid applications • Misuse of Department systems to obtain personal information • Falsifying student aid applications by U.S. government employees • Child Exploitation material trafficking OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division Fraud and the Darknets Special Thanks to Financial Crimes Enforcement Network (FINCEN) OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division Fraud and the Darknets OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division OFFICE OF THE INSPECTOR GENERAL U.S. Department of Education Technology Crimes Division OFFICE OF THE INSPECTOR GENERAL U.S.
    [Show full text]
  • August 10, 2011 Broadcasting Board of Governors International
    August 10, 2011 Broadcasting Board of Governors International Broadcasting Bureau Office of Engineering Cohen Building, Room 4300 330 Independence Avenue, SW Washington, DC 20237 Attn: Malita Dyson Dear Ms. Dyson, Below is our thirty-ninth invoice for contract number BBGCON1808C6700, Accounting Appropri­ ation Data 9568-08-0206-E009701048A. There are no travel costs. Services rendered include blocking resistance architecture and testing, scalability and promotion and advocacy for the Tor network, and other detailed tasks under 0001 of our contract as confirmed in our status reports to BBG. Please do not hesitate to email me at [email protected] or call me at (b) (6) if there are any questions. Invoice 39: Period Months Rate Cost 06/17/2011 - 07/17/2011 1 $15,000 $15,000 Thank you. Sincerely, Andrew Lewman Executive Director TorProject Invoice BBG08102011 The Tor Project, Inc. 969 Main Street, Suite 206, Walpole, MA 02081-2972 USA https://www.torproject.org/ From: Andrew Lewman. Executive Director To: Kelly DeYoe, program officer, BBG RE: contract BBGCON1807S6441 Date: August 10, 2011 This report documents progress in July 2011 on contract BBGCON1807S6441 between BBG and The Tor Project. New releases, new hires, new funding New Releases 1. On July 7, we released Torbutton 1.4.0. The addon has been disabled on addons.mozilla.org. Our URL is now canonical. This release features support for Firefox 5.0, and has been tested against the vanilla release for basic functionality. However, it has not been audited for Network Isolation, State Separation, Tor Undiscoverability or Interoperability issues[l] due to toggling under Firefox 5.
    [Show full text]
  • Tor and Circumvention: Lessons Learned
    Tor and circumvention: Lessons learned Nick Mathewson The Tor Project https://torproject.org/ 1 What is Tor? Online anonymity 1) open source software, 2) network, 3) protocol Community of researchers, developers, users, and relay operators Funding from US DoD, Electronic Frontier Foundation, Voice of America, Google, NLnet, Human Rights Watch, NSF, US State Dept, SIDA, ... 2 The Tor Project, Inc. 501(c)(3) non-profit organization dedicated to the research and development of tools for online anonymity and privacy Not secretly evil. 3 Estimated ~250,000? daily Tor users 4 Anonymity in what sense? “Attacker can’t learn who is talking to whom.” Bob Alice Alice Anonymity network Bob Alice Bob 5 Threat model: what can the attacker do? Alice Anonymity network Bob watch Alice! watch (or be!) Bob! Control part of the network! 6 Anonymity isn't cryptography: Cryptography just protects contents. “Hi, Bob!” “Hi, Bob!” Alice <gibberish> attacker Bob 7 Anonymity isn't just wishful thinking... “You can't prove it was me!” “Promise you won't look!” “Promise you won't remember!” “Promise you won't tell!” “I didn't write my name on it!” “Isn't the Internet already anonymous?” 8 Anonymity serves different interests for different user groups. Anonymity “It's privacy!” Private citizens 9 Anonymity serves different interests for different user groups. Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 10 Anonymity serves different interests for different user groups. “It's traffic-analysis resistance!” Governments Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 11 Anonymity serves different interests for different user groups.
    [Show full text]
  • Tor: the Second-Generation Onion Router (2014 DRAFT V1)
    Tor: The Second-Generation Onion Router (2014 DRAFT v1) Roger Dingledine Nick Mathewson Steven Murdoch The Free Haven Project The Free Haven Project Computer Laboratory [email protected] [email protected] University of Cambridge [email protected] Paul Syverson Naval Research Lab [email protected] Abstract Perfect forward secrecy: In the original Onion Routing We present Tor, a circuit-based low-latency anonymous com- design, a single hostile node could record traffic and later munication service. This Onion Routing system addresses compromise successive nodes in the circuit and force them limitations in the earlier design by adding perfect forward se- to decrypt it. Rather than using a single multiply encrypted crecy, congestion control, directory servers, integrity check- data structure (an onion) to lay each circuit, Tor now uses an ing, configurable exit policies, anticensorship features, guard incremental or telescoping path-building design, where the nodes, application- and user-selectable stream isolation, and a initiator negotiates session keys with each successive hop in practical design for location-hidden services via rendezvous the circuit. Once these keys are deleted, subsequently com- points. Tor is deployed on the real-world Internet, requires promised nodes cannot decrypt old traffic. As a side benefit, no special privileges or kernel modifications, requires little onion replay detection is no longer necessary, and the process synchronization or coordination between nodes, and provides of building circuits is more reliable, since the initiator knows a reasonable tradeoff between anonymity, usability, and ef- when a hop fails and can then try extending to a new node.
    [Show full text]
  • The Dark Net Free
    FREE THE DARK NET PDF Jamie Bartlett | 320 pages | 12 Mar 2015 | Cornerstone | 9780099592020 | English | London, United Kingdom What Is the Dark Net? A dark net or darknet is an overlay network within the Internet that can only be accessed with specific software, configurations, or The Dark Net, [1] and often uses a unique customised communication protocol. Two typical darknet types are social networks [2] usually used for file hosting with a peer-to-peer connection[3] and anonymity proxy networks such as Tor via an anonymized series of connections. The term The Dark Net was popularised by major news outlets to associate with Tor Onion serviceswhen the infamous drug bazaar Silk Road used it, [4] despite the terminology being unofficial. Technology such as TorI2Pand Freenet was intended to defend digital rights by providing security, anonymity, or censorship resistance and is used for both illegal and legitimate reasons. Anonymous communication between whistle- blowersactivists, journalists and news organisations is also facilitated The Dark Net darknets through use of applications such as SecureDrop. The term originally The Dark Net computers on ARPANET that were hidden, programmed to receive messages but not respond to or acknowledge anything, thus remaining invisible, in the dark. Since ARPANETthe usage of dark net has expanded to include friend-to-friend networks usually used for file sharing with a peer-to-peer connection and privacy networks such as Tor. The term "darknet" is often used interchangeably with The Dark Net " dark web " due to the quantity of hidden services on Tor 's darknet. The term is often inaccurately used interchangeably with the deep web due to Tor's history as a platform that could not be search-indexed.
    [Show full text]
  • Examining Older Users' Online Privacy-Enhancing
    EXAMINING OLDER USERS’ ONLINE PRIVACY-ENHANCING EXPERIENCE FROM A HUMAN-COMPUTER INTERACTION PERSPECTIVE BY HSIAO-YING HUANG DISSERTATION Submitted in partial fulfillment of the requirements for Doctor of Philosophy in Informatics in the Graduate College of the University of Illinois at Urbana-Champaign, 2019 Urbana, Illinois Doctoral Committee: Assistant Professor Masooda Bashir, Chair Associate Professor Nikita Borisov Professor Wendy Rogers Professor Michael Twidale ABSTRACT The advancement of Internet technologies, including instant and unlimited access to information and services, has been an excellent source of support for older adults. However, pervasive and continuous online tracking can pose severe threats to older adults’ information privacy. Surprisingly, very few empirical studies have focused on older users’ online privacy-enhancing experience from a Human-Computer Interaction perspective. Therefore, it remains unclear how older users protect their online information privacy and what factors influence their online behaviors. Thus, my thesis aims to study older users’ online privacy-enhancing experience by examining the following questions: 1) what older users know and do to protect their online information privacy, 2) how their emotional state influences their adoption of privacy-enhancing technologies (PETs), and 3) what usability challenges they encounter while using one of the most popular PETs currently available to the public. To examine these questions, a diverse set of empirical approaches was adopted, including a survey, a quasi-experiment, and a usability study. My research findings suggest that three are three elements that play a crucial role in older users' online privacy-enhancing practices. First, older users' knowledge of online privacy has a significant influence on their daily online privacy protection behaviors.
    [Show full text]
  • Technical and Legal Overview of the Tor Anonymity Network
    Emin Çalışkan, Tomáš Minárik, Anna-Maria Osula Technical and Legal Overview of the Tor Anonymity Network Tallinn 2015 This publication is a product of the NATO Cooperative Cyber Defence Centre of Excellence (the Centre). It does not necessarily reflect the policy or the opinion of the Centre or NATO. The Centre may not be held responsible for any loss or harm arising from the use of information contained in this publication and is not responsible for the content of the external sources, including external websites referenced in this publication. Digital or hard copies of this publication may be produced for internal use within NATO and for personal or educational use when for non- profit and non-commercial purpose, provided that copies bear a full citation. www.ccdcoe.org [email protected] 1 Technical and Legal Overview of the Tor Anonymity Network 1. Introduction .................................................................................................................................... 3 2. Tor and Internet Filtering Circumvention ....................................................................................... 4 2.1. Technical Methods .................................................................................................................. 4 2.1.1. Proxy ................................................................................................................................ 4 2.1.2. Tunnelling/Virtual Private Networks ............................................................................... 5
    [Show full text]
  • Paul Syverson U.S
    Theory and Design of Low-latency Anonymity Systems (Lecture 2) Paul Syverson U.S. Naval Research Laboratory [email protected] http://www.syverson.org 1 Course Outline Lecture 1: • Usage examples, basic notions of anonymity, types of anonymous comms systems • Crowds: Probabilistic anonymity, predecessor attacks Lecture 2: • Onion routing basics: simple demo of using Tor, network discovery, circuit construction, crypto, node types and exit policies • Economics, incentives, usability, network effects 2 Course Outline Lecture 3: • Formalization and analysis, possibilistic and probabilistic definitions of anonymity • Hidden services: responder anonymity, predecessor attacks revisited, guard nodes Lecture 4: • Link attacks • Trust 3 Tor Demo Background Tor is an onion routing system for anonymous communication • Initially a project at the U.S. Naval Research Laboratory • The Tor Project Inc. is now a U.S. nonprofit 501 (c) (3) • Network comprised of thousands of volunteer nodes from around the world • Free and open software maintained by the Tor Project, used by hundreds of thousands 4 Getting Tor 5 Vidalia: Tor’s GUI 6 Vidalia: Tor’s GUI 7 8 The Web through Tor and TorButton 9 10 Low-latency systems are vulnerable to end-to-end correlation attacks. Low-latency: Alice1 sends: match! Bob2 gets: Alice2 sends: Bob1 gets: match! Time High-latency: Alice1 sends: Alice2 sends: Bob1 gets: ..... Bob2 gets: ..... These attacks work in practice. The obvious defenses are expensive (like high-latency), useless, or both. 11 Multiple relays so that no single one can betray Alice. Alice Bob R1 R3 R4 R5 R2 12 For Onion Routing: A corrupt first hop can tell that Alice is talking, but not to whom.
    [Show full text]
  • Online Course Orientation Manual
    Online Course Orientation Student Policies and Procedures A member of: Georgia Virtual Technical Connection December 2020 Table of Contents Georgia Virtual Technical Connection (GVTC) ................................................................ 4 Getting Started With Your Online Class .......................................................................... 5 Student Email Access ..................................................................................................... 7 BLACKBOARD ................................................................................................................ 8 Office 365 ........................................................................................................................ 9 Installing Office 365 Applications to Your Personal Computer ...................................... 10 For PC ........................................................................................................................ 10 For Mac ...................................................................................................................... 16 Accessing Office 365 ..................................................................................................... 22 BannerWeb ................................................................................................................... 22 Weekly Student Engagement ........................................................................................ 22 Proctored Event Requirement ......................................................................................
    [Show full text]
  • The Effectiveness of the TOR Anonymity Network by David
    The Effectiveness of the Tor Anonymity Network David Gingerich 68-590-K 11/30/2014 Abstract Recent reports of government agencies monitoring their own citizens’ internet activity has led to an increasing demand for anonymity on internet. The purpose of this project is to present the research and findings that relate to the reliability of the web anonymity network Tor. Tor works by relaying public internet traffic to a predetermined set of nodes that hide the original sender and receiver’s information from an individual's internet traffic as it travels over the internet. Each Tor node only knows which node the packet came from and where the packet is going. The project explains the core technologies that make Tor work as well as the various attacks that Tor is designed to circumvent. Tor’s roots as an anonymity project designed by the US Naval Laboratory intended to protect the identities of government employees working out of hostile territories, to its current status as a non-profit organization is detailed. The reader will be guided through an explanation of how Tor works, as well as how Tor’s hidden services allow for a website’s physical location to be hidden. The reader is also guided through various examples of when the Tor network’s integrity was faulted, as Tor is a common target of various US government agencies such as the National Security Agency (NSA) and the Federal Bureau of Investigation (FBI). Over the last several years many Tor users’ identities have been exposed due to various factors that were of their own makings.
    [Show full text]
  • Identifying and Reducing Usability Issues in Anonymity Systems
    Why Johnny Can’t Blow the Whistle: Identifying and Reducing Usability Issues in Anonymity Systems Greg Norcie Jim Blythe Kelly Caine L Jean Camp Indiana University Information Sciences Institute Clemson University Indiana University [email protected] [email protected] [email protected] [email protected] Abstract—Tor is one of the most widely used anonymity Tor uses onion routing [24] to prevent third parties from networks in the world. The anonymity provided to any individual observing or transparently interjecting themselves into a user’s Tor user is a function of the total number of Tor users. Adoption web activity. The term “onion routing” refers to Tor’s layered of anonymity tools, including Tor, can be hindered by a lack of usability. Therefore, enhancing Tor’s usability and making it encryption, analogous to the layers in an onion, which prevents easier for more people to use Tor successfully increases security third parties (including Tor nodes) from observing the content for all Tor users. To enhance Tor usability we begin by identifying of packets in transit. Tor also prevents the linkage of the source stop-points which may act as barriers to using the Tor Browser and destination of any packet in the Tor network. Of course, Bundle (TBB). We suggest changes based on our analysis of there are attacks that threaten privacy even when using Tor, these stop-points. To follow through, in our second study we test whether the changes we recommended to the Tor Project are including subversion via control of malicious nodes and timing effective in increasing usability, and find a significant decrease attacks.
    [Show full text]
  • Application Identification and Control
    APPLICATION Arcisdms Networking 3 1 BITS Download Manager File Transfer 4 1 Citrix IMA Remote Access 5 1 Cyworld Social Networking 3 2 Ares File Transfer 1 2 BitTorrent File Transfer 1 5 Citrix Licensing Remote Access 5 1 Daily Mail Web Services 1 2 IDENTIFICATION Ariel Networking 3 3 bizo.com Web Services 3 1 Citrix Online Collaboration 4 3 Dailymotion Streaming Media 1 4 Army Attack Games 2 5 BJNP Networking 4 1 Citrix RTMP Remote Access 5 2 Datagram Authenticated Session Protocol Networking 3 1 Army Proxy Proxy 1 5 Blaze File Server File Transfer 3 2 Citrix WANScaler Remote Access 5 1 Datalogix Web Services 4 1 arns Networking 3 1 BLIDM Database 3 1 Citrix XenDesktop Remote Access 5 1 Datei.to File Transfer 2 5 & CONTROL ARP Networking 3 1 Blogger Web Services 3 1 CitrixSLG Remote Access 5 1 DATEX-ASN Networking 3 1 $100,000 Pyramid Games 2 5 Adobe Updates Web Services 3 1 asa Networking 3 1 Blokus Games 1 2 CityVille Games 1 1 Daum.net Web Services 1 1 050Plus Messaging 2 2 Adometry Web Services 4 1 Ask.com Web Services 2 1 Bloomberg Web Services 4 1 CL1 Networking 3 1 Daytime Network Monitoring 2 5 12306.cn Web Services 4 1 Adready Web Services 4 1 Astaro SSL VPN Client VPN and Tunneling 3 1 Bluekai Web Services 1 1 Clarizen Collaboration 5 1 dBASE Unix Database 3 1 While traditional firewalls block protocols, 126.com Mail 4 2 Adrive.com Web Services 3 3 Astraweb File Transfer 3 5 BlueLithium Web Services 3 1 Classmates Social Networking 1 3 DC Storm Web Services 4 1 and ports, the Network Box Application 17173.com Social Networking
    [Show full text]