[tor-bugs] #12130 [Pluggable transport]: Figure out deployment strategy for obfs4
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon May 26 16:37:18 UTC 2014
#12130: Figure out deployment strategy for obfs4
---------------------------------+---------------------
Reporter: asn | Owner: asn
Type: task | Status: new
Priority: normal | Milestone:
Component: Pluggable transport | Version:
Keywords: | Actual Points:
Parent ID: | Points:
---------------------------------+---------------------
While we were busy doing other things, Yawning created his own PT which
supercedes scramblesuit. obfs4 (this is a temporary name), aims to have
all the features of scramblesuit and a bit more (for example, it has
better performance because of Elligator instead of UniformDH).
The code can be found at `https://github.com/Yawning/obfs4` and apparently
it already has feature parity with scramblesuit.
We should decide whether we should deploy obfs4 and when.
Some possible avenues:
- Deploy '''both''' scramblesuit and obfs4. This is a bit pointless since
obfs4 does not have any real threat model differences over scramblesuit.
And deploying another transport means that we have to ask bridge operators
to upgrade, and users to learn another transport name (crying wolf
paradigm applies here too). Also, maintaining two similar codebases is a
bit stupid.
- Deploy obfs4 '''instead of''' scramblesuit. This makes more sense since
obfs4 is supposedly ''strictly better'' than scramblesuit. However:
1. scramblesuit is already a bit deployed. We have a few bridges already
running it, and it was also recently added in the TBB
`https://gitweb.torproject.org/builders/tor-browser-
bundle.git/commitdiff/ef80bcdfd15ba873de6c7a88382176b893770638`.
2. obfs4 is untested and will probably need some time to pass quality
control and review.
3. obfs4 is a go application, so it needs an extra patch to the TBB
build process.
- Continue scramblesuit deployment, and hold on to obfs4. Maybe we can use
obfs4 as an emergency transport in the future. Unfortunately, this is
suboptimal. since it means that we will have to write TBB build patches to
deploy the emergency transport. It would make more sense to hold on
scramblesuit as the emergency transport (since it's already in obfsproxy).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12130>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list