20 Dec
2014
20 Dec
'14
8:07 p.m.
On Sat, Dec 20, 2014 at 2:09 PM, Nick Mathewson nickm@alum.mit.edu wrote:
On Sat, Dec 20, 2014 at 4:56 AM, Yawning Angel yawning@schwanenlied.me wrote:
And I think that the CREATE cell handler's code's implementation of the (deprecated) TAP protocol is vulnerable to the timing attack discussed in Goldberg's "On the Security of the Tor Authentication Protocol".
Whoops. This paper didn't have a timing attack in it. I don't know what I was thinking of when I wrote this paragraph. I think I was misremembering which modifications the paper said that would have made TAP vulnerable.
(Thanks to Ian for pointing this out to me.)
--
Nick