Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Tor Project Anonymity Online Erinn Clark TU-Berlin Techtalks January 2011.

Published bySandra Fletcher Modified over 8 years ago

Similar presentations

Presentation on theme: "The Tor Project Anonymity Online Erinn Clark TU-Berlin Techtalks January 2011."— Presentation transcript:

1 The Tor Project Anonymity Online Erinn Clark erinn@torproject.org TU-Berlin Techtalks January 2011

2 In the future everyone will be anonymous for 15 minutes – Banksy

3 What is Tor? Online anonymity: software, network, protocol Free software Community of researchers, developers, and relay operators Funding from US DoD, EFF, Voice of America, Google, NLNet, Human Rights Watch,...

4 The Tor Project, Inc. 501(c)(3) non-profit dedicated to the research and development of tools for online anonymity and privacy Thousands of volunteers running relays Dozens of volunteer developers Between 7-15 paid developers at any given time

5 What is anonymity?

6 All personal life rested on secrecy, and possibly it was partly on that account that civilized man was so nervously anxious that personal privacy should be respected. - Anton Chekhov The Lady with the Little dog

7 Threat model: what can the attacker do? Alice Anonymity network Bob watch (or be!) Bob! watch Alice! Control part of the network!

8 Anonymity isn't cryptography: Cryptography just protects contents Alice Bob “Hi, Bob!” attacker

9 Anonymity isn't just wishful thinking... “You can't prove it was me!” “Promise you won't look!” “Promise you won't remember!” “Promise you won't tell!” “I didn't write my name on it!” “Isn't the Internet already anonymous?”

10 Anonymity serves different interests for different user groups Private citizens “It's privacy!” Anonymity

11 Anonymity serves different interests for different user groups Private citizens Businesses “It's network security!” “It's privacy!” Anonymity

12 Anonymity serves different interests for different user groups Private citizens Governments Businesses “It's traffic-analysis resistance!” “It's network security!” “It's privacy!” Anonymity

13 Anonymity serves different interests for different user groups Private citizens Governments Businesses “It's traffic-analysis resistance!” “It's network security!” “It's privacy!” Human rights activists “It's reachability!” Anonymity

14 Who uses Tor?

15 Estimated 500,000 users daily

16 Average citizens Businesses Law enforcement Governments Journalists Whistleblowers

17 You can't get anonymity on your own: private solutions are ineffective... Investigated suspect... AliceCorp Competitor Municipal anonymity net “Looks like a cop.” “It's somebody at AliceCorp!” “One of the 25 users on AliceNet.” Officer Alice Citizen Alice AliceCorp anonymity net Alice's small anonymity net

18 ... so, anonymity loves company! Investigated suspect... AliceCorp Competitor “?? ?” Officer Alice Citizen Alice Shared anonymity net

19 Yes, bad people need anonymity too. But they are already doing well...... Evil Criminal Alice Stolen mobile phones Compromised botnet Open wireless nets

20 Current situation: Bad people on the Internet are doing fine Trojans Viruses Exploits Phishing Spam Espionage DDoS Extortion Botnets Zombies

21 The simplest designs use a single relay to hide connections Bob2 Bob1 Bob3 Alice2 Alice3 E(Bob3,“X”) E(Bob1, “Y”) E(Bob2, “Z”) “Y” “Z” “X” (example: some commercial proxy providers) Alice1 Relay

22 But a single relay (or eavesdropper!) is a single point of failure Bob2 Bob1 Bob3 Alice2 Alice3 E(Bob3,“X”) E(Bob1, “Y”) E(Bob2, “Z”) “Y” “Z” “X” Alice1 Evil Relay

23 … or a single point of bypass Bob2 Bob1 Bob3 Alice2 Alice3 E(Bob3,“X”) E(Bob1, “Y”) E(Bob2, “Z”) “Y” “Z” “X” Alice1 Irrelevant relay

24 So, add multiple relays so that no single one can betray Alice Bob R1 R3 R4 R5 Alice R2

25 A corrupt first hop can tell that Alice is talking, but not to whom Bob R3 R4 R5 Alice R1 R2

26 A corrupt final hop can tell that somebody is talking to Bob, but not who Bob R1 R4 R5 Alice R3 R2

27 Alice makes a session key with R1...And then tunnels to R2...and to R3 Bob Bob2 Alice R1 R2 R3 R4 R5

28 Relay versus Discovery There are two pieces to all these “proxying” schemes: a relay component: building circuits, sending traffic over them, getting the crypto right a discovery component: learning what relays are available

29 The basic Tor design uses a simple centralized directory protocol Servers publish self-signed descriptors. Authorities publish a consensus list of all descriptors Alice downloads consensus and descriptors from anywhere S2 S1 Alice Trusted directory S3 cache

30 Attackers can block users from connecting to the Tor network By blocking the directory authorities By blocking all the relay IP addresses in the directory By filtering based on Tor's network fingerprint By preventing users from finding the Tor software

31 R4 R2 R1 R3 Bob Alice Blocked User Blocked User Blocked User Blocked User Blocked User Alice

32 Tor and Circumvention

33

34 What happened around September 25 th, 2009?

35 Tor and Circumvention What happened around September 25 th, 2009? China blocked most of the Tor network in anticipation of the CCP 60 th anniversary

36 Tor and Circumvention

37

38 Questions? erinn@torproject.org https://www.torproject.org

Download ppt "The Tor Project Anonymity Online Erinn Clark TU-Berlin Techtalks January 2011."

Similar presentations

Anonymity on the Internet Jess Wilson. Anonymizing Proxy What is a proxy? – An intermediary between you and the internet How does it make you anonymous?

Anonymity on the Internet Jess Wilson. Anonymizing Proxy What is a proxy? – An intermediary between you and the internet How does it make you anonymous?
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.
ToR. Tor: anonymity online Tor is a toolset for a wide range of organizations and people that want to improve their safety and security on the Internet.

ToR. Tor: anonymity online Tor is a toolset for a wide range of organizations and people that want to improve their safety and security on the Internet.
1 Securing the Net: Where the Holes Are Steven M. Bellovin AT&T Labs – Research

1 Securing the Net: Where the Holes Are Steven M. Bellovin AT&T Labs – Research
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Sofya Rozenblat 11/26/2012 CS 105 TOR ANONYMITY NETWORK.

Sofya Rozenblat 11/26/2012 CS 105 TOR ANONYMITY NETWORK.
Protecting your Family From the dark places on the Internet Going beyond the standard PC Filter, and dealing with the multiple devices that access the.

Protecting your Family From the dark places on the Internet Going beyond the standard PC Filter, and dealing with the multiple devices that access the.
Www.sti-innsbruck.at © Copyright 2012 STI INNSBRUCK www.sti-innsbruck.at Tor project: Anonymity online.

© Copyright 2012 STI INNSBRUCK Tor project: Anonymity online.
Anonymity and the Internet Nathan Owens. Overview Regular Internet anonymity Non-standard implementations Benefits Negatives Legal changes Future Ideas.

Anonymity and the Internet Nathan Owens. Overview Regular Internet anonymity Non-standard implementations Benefits Negatives Legal changes Future Ideas.
CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Case Study: TOR Anonymity Network Bahadir Ismail Aydin Computer Sciences and Engineering University.

CSE 486/586, Spring 2012 CSE 486/586 Distributed Systems Case Study: TOR Anonymity Network Bahadir Ismail Aydin Computer Sciences and Engineering University.
1 Defining Network Security Security is prevention of unwanted information transfer What are the components? –...Physical Security –…Operational Security.

1 Defining Network Security Security is prevention of unwanted information transfer What are the components? –...Physical Security –…Operational Security.
Adrian Crenshaw. Darknets  There are many definitions, but mine is “anonymizing private networks ”  Use of encryption.

Adrian Crenshaw. Darknets  There are many definitions, but mine is “anonymizing private networks ”  Use of encryption.
Network problems Last week, we talked about 3 disadvantages of networks. What are they?

Network problems Last week, we talked about 3 disadvantages of networks. What are they?
Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.

Lecture 16 Page 1 Advanced Network Security Perimeter Defense in Networks: Virtual Private Networks Advanced Network Security Peter Reiher August, 2014.
Max Secure Software founded in Jan 2003 develops innovative privacy, security, protection and performance solutions for Internet users. The company is.

Max Secure Software founded in Jan 2003 develops innovative privacy, security, protection and performance solutions for Internet users. The company is.
1 Topic 2: Lesson 3 Intro to Firewalls Summary. 2 Basic questions What is a firewall? What is a firewall? What can a firewall do? What can a firewall.

1 Topic 2: Lesson 3 Intro to Firewalls Summary. 2 Basic questions What is a firewall? What is a firewall? What can a firewall do? What can a firewall.
Copyright ©2005 CNET Networks, Inc. All rights reserved. Practice e-mail safety Learn how to protect yourself against common e-mail attacks.

Copyright ©2005 CNET Networks, Inc. All rights reserved. Practice safety Learn how to protect yourself against common attacks.
Supplemental Information on TOR (The Onion Router) CEH ed 8, Rev 4 CS3695 – Network Vulnerability Assessment & Risk Mitigation–

Supplemental Information on TOR (The Onion Router) CEH ed 8, Rev 4 CS3695 – Network Vulnerability Assessment & Risk Mitigation–
AQA A2 COMP 3: Internet Security. Lesson Aim By the end of the lesson: By the end of the lesson: Describe different security issues and recommend tools/techniques.

AQA A2 COMP 3: Internet Security. Lesson Aim By the end of the lesson: By the end of the lesson: Describe different security issues and recommend tools/techniques.

Similar presentations

Ads by Google