faq: add update on netflow padding (fixes #22958) (74b08c7a1)

docs/en/faq.wml

@@ -4112,13 +4112,8 @@ receive a fixed number of cells. This approach is more well-understood in
 the context of high-latency systems. See e.g.
 <a href="http://freehaven.net/anonbib/#pet05-serjantov">
 Message Splitting Against the Partial Adversary by Andrei Serjantov and
-Steven J. Murdoch</a>.
-    </p>
-    <p>
-But since we don't currently understand what network and padding
-parameters, if any, could provide increased end-to-end security, our
-current strategy is to minimize the number of places that the adversary
-could possibly see.
+Steven J. Murdoch</a>. Also see our <a href="SendPadding">update on netflow
+    padding below</a>.
     </p>
 
     <hr>
@@ -4281,6 +4276,26 @@ only solution is to have no opinion.
     optimistic.
     </p>
 
+    <p>
+    We did however since
+    <a href="https://gitweb.torproject.org/torspec.git/tree/proposals/251-netflow-padding.txt">
+    implement netflow padding</a> to collapse netflow records for improved
+    security. Now padding is sent between a client's Tor connection and its guard
+    bidirectionally at a random interval that we control from the consensus,
+    with a default of 4 to 14 seconds if the connection is idle. This has the
+    goal of stymying some of the potential traffic analysis attacks out there --
+    website fingerprinting, end-to-end correlation, and the things in between.
+    </p>
+
+    <p>For details see the
+    <a href="https://blog.torproject.org/blog/network-team-hackfest-wilmington-watch">
+    blog post</a> by the Tor network team, the
+    <a href="https://lists.torproject.org/pipermail/tor-dev/2015-August/009326.html">
+    announcement</a> on the tor-dev mailinglist or read further
+    <a href="https://www.freehaven.net/anonbib/bibtex.html">publications</a> on
+    padding.
+    </p>
+
     <hr>
 
     <a id="Steganography"></a>


...	...	@@ -4112,13 +4112,8 @@ receive a fixed number of cells. This approach is more well-understood in
4112	4112	the context of high-latency systems. See e.g.
4113	4113	<a href="http://freehaven.net/anonbib/#pet05-serjantov">
4114	4114	Message Splitting Against the Partial Adversary by Andrei Serjantov and
4115		-Steven J. Murdoch</a>.
4116		- </p>
4117		- <p>
4118		-But since we don't currently understand what network and padding
4119		-parameters, if any, could provide increased end-to-end security, our
4120		-current strategy is to minimize the number of places that the adversary
4121		-could possibly see.
	4115	+Steven J. Murdoch</a>. Also see our <a href="SendPadding">update on netflow
	4116	+ padding below</a>.
4122	4117	</p>
4123	4118
4124	4119	<hr>
...	...	@@ -4281,6 +4276,26 @@ only solution is to have no opinion.
4281	4276	optimistic.
4282	4277	</p>
4283	4278
	4279	+ <p>
	4280	+ We did however since
	4281	+ <a href="https://gitweb.torproject.org/torspec.git/tree/proposals/251-netflow-padding.txt">
	4282	+ implement netflow padding</a> to collapse netflow records for improved
	4283	+ security. Now padding is sent between a client's Tor connection and its guard
	4284	+ bidirectionally at a random interval that we control from the consensus,
	4285	+ with a default of 4 to 14 seconds if the connection is idle. This has the
	4286	+ goal of stymying some of the potential traffic analysis attacks out there --
	4287	+ website fingerprinting, end-to-end correlation, and the things in between.
	4288	+ </p>
	4289	+
	4290	+ <p>For details see the
	4291	+ <a href="https://blog.torproject.org/blog/network-team-hackfest-wilmington-watch">
	4292	+ blog post</a> by the Tor network team, the
	4293	+ <a href="https://lists.torproject.org/pipermail/tor-dev/2015-August/009326.html">
	4294	+ announcement</a> on the tor-dev mailinglist or read further
	4295	+ <a href="https://www.freehaven.net/anonbib/bibtex.html">publications</a> on
	4296	+ padding.
	4297	+ </p>
	4298	+
4284	4299	<hr>
4285	4300
4286	4301	<a id="Steganography"></a>
4287	4302

tor-webwml.git