<div dir="ltr">Dear Roger<div> Thanks for your response. I read the spec document about the RELAY_DROP cells. You say that no one has understood the passive correlation attack to utilize the RELAY_DROP cells. I am however little curious to see if "moderate padding" (enough to not mess up QoS of various services) can be used to prevent some of the attacks that rely on parameters such as OWD , RTT and B/W variation to link relays that are being used in a circuit. I am curious from the practical point of view of exploring such padding to prevent our bandwidth based confirmation attack or the M&D attack (and its 2009 variant) . </div>
<div><br></div><div>Thanks</div><div>Sambuddho<br><br><div class="gmail_quote">On Thu, Jun 9, 2011 at 12:29 PM, Roger Dingledine <span dir="ltr"><<a href="mailto:arma@mit.edu">arma@mit.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div><div></div><div class="h5">On Wed, Jun 08, 2011 at 08:11:58PM -0400, Sambuddho Chakravarty wrote:<br>
> Hi All<br>
> I read in the Tor design spec that Tor control protocol supports keepalive<br>
> messages which could be used for link padding . I wonder if anyone has ever<br>
> explored using them...<br>
<br>
</div></div>I don't think you mean the Tor control protocol. There's no need to pad<br>
that connection (or if there is, you've screwed up badly somewhere else).<br>
<br>
The Tor protocol supports PADDING cells -- see sec 3 of tor-spec.txt:<br>
<br>
PADDING cells are currently used to implement connection keepalive.<br>
If there is no other traffic, ORs and OPs send one another a PADDING<br>
cell every few minutes.<br>
<br>
There's also a DROP relay cell. While PADDING cells can only be sent to<br>
the adjacent relay, the client can send DROP cells to any relay on her<br>
circuit, and any relay on the circuit can inject DROP cells to the client.<br>
See also sec 7.2 of tor-spec.<br>
<br>
But that said, I think the answer to your question is no. AFAIK nobody<br>
has understood passive correlation attacks well enough to get to the<br>
"if I change the design like this, does the attack work less well"<br>
research stage.<br>
<br>
--Roger<br>
<br>
_______________________________________________<br>
tor-dev mailing list<br>
<a href="mailto:tor-dev@lists.torproject.org">tor-dev@lists.torproject.org</a><br>
<a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev</a><br>
<br>
</blockquote></div><br></div></div>