[tor-bugs] #3313 [Tor Client]: Security enhancement against malware for Tor
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Mon May 30 18:40:23 UTC 2011
#3313: Security enhancement against malware for Tor
-------------------------+--------------------------------------------------
Reporter: ioerror | Owner: ioerror
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Tor Client | Version: Tor: unspecified
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Comment(by nickm):
To be clear on what this is trying to achieve, from IRC:
{{{
20:29 < nickm> Hm. So as you see it, it's a forward-secrecy thing s.t. an
attacker who compromises the user running Tor should not be
able
to deanonymize anything already started, or read any keys
from a
tor process already created.
20:30 < nickm> Where we both agree that keys already deleted and
connections
already closed at the compromise time are safe...
20:30 < nickm> and that keys created and connections made _after_ the
compromise are potentially vulnerable.
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3313#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list