[tor-talk] Exit Traffic classification and discrimination
Roger Dingledine
arma at mit.edu
Tue Feb 2 12:50:14 UTC 2016
On Sun, Jan 31, 2016 at 03:42:51PM +0100, Fabio Pietrosanti (naif) - lists wrote:
> But 90% of my resources (given the previous hypotetical assumption)
> would be happily pumping non-abuse-generating Tor exit traffic.
>
> Does anyone ever done some kind of testing or analysis about that kind
> of approach?
Well, the first question there is to learn whether your assumption
about destinations is actually true -- is most Tor traffic going to a
small number of sites, or are many Tor destinations in the "long tail"?
I spoke to Tariq Elahi at length about exactly this research question,
because they want to run some exit relays and try to answer it. They had
some good plans for how to do it safely -- use Privex to combine views
from several exits so you can't go back and learn which exit saw which
destination, write nothing to disk except the final answer, etc.
(I put together a draft set of guidelines for how to do safe research
like this as part of the 32c3 onion services talk:
https://media.ccc.de/v/32c3-7322-tor_onion_services_more_useful_than_you_think
)
My suggestion to him at the time was to write up the details for why his
design is safe, and get them vetted by other researchers in public, before
proceeding. I haven't talked to him about how it's going since then.
Hopefully he didn't skip too many of the recommended steps. :)
--Roger
More information about the tor-talk
mailing list