Browse code

faq: add update on netflow padding (fixes #22958)

traumschule authored on21/08/2018 06:51:47 • hiro committed on22/08/2018 12:13:20
Showing1 changed files
... ...
@@ -4112,13 +4112,8 @@ receive a fixed number of cells. This approach is more well-understood in
4112 4112
 the context of high-latency systems. See e.g.
4113 4113
 <a href="http://freehaven.net/anonbib/#pet05-serjantov">
4114 4114
 Message Splitting Against the Partial Adversary by Andrei Serjantov and
4115
-Steven J. Murdoch</a>.
4116
-    </p>
4117
-    <p>
4118
-But since we don't currently understand what network and padding
4119
-parameters, if any, could provide increased end-to-end security, our
4120
-current strategy is to minimize the number of places that the adversary
4121
-could possibly see.
4115
+Steven J. Murdoch</a>. Also see our <a href="SendPadding">update on netflow
4116
+    padding below</a>.
4122 4117
     </p>
4123 4118
 
4124 4119
     <hr>
... ...
@@ -4281,6 +4276,26 @@ only solution is to have no opinion.
4281 4276
     optimistic.
4282 4277
     </p>
4283 4278
 
4279
+    <p>
4280
+    We did however since
4281
+    <a href="https://gitweb.torproject.org/torspec.git/tree/proposals/251-netflow-padding.txt">
4282
+    implement netflow padding</a> to collapse netflow records for improved
4283
+    security. Now padding is sent between a client's Tor connection and its guard
4284
+    bidirectionally at a random interval that we control from the consensus,
4285
+    with a default of 4 to 14 seconds if the connection is idle. This has the
4286
+    goal of stymying some of the potential traffic analysis attacks out there --
4287
+    website fingerprinting, end-to-end correlation, and the things in between.
4288
+    </p>
4289
+
4290
+    <p>For details see the
4291
+    <a href="https://blog.torproject.org/blog/network-team-hackfest-wilmington-watch">
4292
+    blog post</a> by the Tor network team, the
4293
+    <a href="https://lists.torproject.org/pipermail/tor-dev/2015-August/009326.html">
4294
+    announcement</a> on the tor-dev mailinglist or read further
4295
+    <a href="https://www.freehaven.net/anonbib/bibtex.html">publications</a> on
4296
+    padding.
4297
+    </p>
4298
+
4284 4299
     <hr>
4285 4300
 
4286 4301
     <a id="Steganography"></a>