[tor-commits] [webwml/master] faq: add update on netflow padding (fixes #22958)

hiro at torproject.org hiro at torproject.org
Wed Aug 22 10:13:51 UTC 2018 

commit 74b08c7a16ef3a21b9148755bcffcd03801924f8
Author: traumschule <traumschuleriebau at riseup.net>
Date:   Tue Aug 21 06:51:47 2018 +0200

    faq: add update on netflow padding (fixes #22958)
---
 docs/en/faq.wml | 29 ++++++++++++++++++++++-------
 1 file changed, 22 insertions(+), 7 deletions(-)

diff --git a/docs/en/faq.wml b/docs/en/faq.wml
index 3287072d..70e63620 100644
--- a/docs/en/faq.wml
+++ b/docs/en/faq.wml
@@ -4112,13 +4112,8 @@ receive a fixed number of cells. This approach is more well-understood in
 the context of high-latency systems. See e.g.
 <a href="http://freehaven.net/anonbib/#pet05-serjantov">
 Message Splitting Against the Partial Adversary by Andrei Serjantov and
-Steven J. Murdoch</a>.
-    </p>
-    <p>
-But since we don't currently understand what network and padding
-parameters, if any, could provide increased end-to-end security, our
-current strategy is to minimize the number of places that the adversary
-could possibly see.
+Steven J. Murdoch</a>. Also see our <a href="SendPadding">update on netflow
+    padding below</a>.
     </p>
 
     <hr>
@@ -4281,6 +4276,26 @@ only solution is to have no opinion.
     optimistic.
     </p>
 
+    <p>
+    We did however since
+    <a href="https://gitweb.torproject.org/torspec.git/tree/proposals/251-netflow-padding.txt">
+    implement netflow padding</a> to collapse netflow records for improved
+    security. Now padding is sent between a client's Tor connection and its guard
+    bidirectionally at a random interval that we control from the consensus,
+    with a default of 4 to 14 seconds if the connection is idle. This has the
+    goal of stymying some of the potential traffic analysis attacks out there --
+    website fingerprinting, end-to-end correlation, and the things in between.
+    </p>
+
+    <p>For details see the
+    <a href="https://blog.torproject.org/blog/network-team-hackfest-wilmington-watch">
+    blog post</a> by the Tor network team, the
+    <a href="https://lists.torproject.org/pipermail/tor-dev/2015-August/009326.html">
+    announcement</a> on the tor-dev mailinglist or read further
+    <a href="https://www.freehaven.net/anonbib/bibtex.html">publications</a> on
+    padding.
+    </p>
+
     <hr>
 
     <a id="Steganography"></a>

More information about the tor-commits mailing list