Download - Tor
![Page 1: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/1.jpg)
![Page 2: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/2.jpg)
Overview Anonymity systems Review of how Tor works Tor Project Inc. Helper tools and accessories Advanced Tor control Attack Vectors
![Page 3: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/3.jpg)
Anonymity Systems JAP I2P Freenet Xerobank Botnets
![Page 4: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/4.jpg)
Freenet Storage network p2p based Shares files on your system to other
nodes Plausabile Deniability
![Page 5: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/5.jpg)
I2P Opposing design of Tor UDP based Darknet design Java, Python, and C API’s Mixed routing based on packets Splits tunneling between upstream and
downstream “Garlic Routing” – mix streams together to
prevent traffic analysis Variable latency design
![Page 6: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/6.jpg)
Tor Tor (not TOR) – previously stood for The
Onion Router Provides a method of anonymity by
passing data between proxies
![Page 7: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/7.jpg)
Tor Network
![Page 8: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/8.jpg)
Terminology Cell – your message Circuit – tunnel made up of relays Entry Node: first hop into the Tor
network Exit Node: last hop before destination Relay Node: middle hop Bridge Node: nodes not listed in the Tor
directory to evade filtering
![Page 9: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/9.jpg)
Who’s Using Tor? Whistleblowers
Wikileaks – runs hidden service Militaries
field ops command and control using hidden
services Chinese journalists and dissidents
![Page 10: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/10.jpg)
Tor Project 501(c)(3) NFP Freely available Full spec and full documentation
![Page 11: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/11.jpg)
Project Finances
https://www.torproject.org/about/financials.html
![Page 12: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/12.jpg)
Current Project Sponsors Federal Grant:
International Program to Support Democracy Human Rights and Labor
$632,189 International Broadcasting Bureau
Voice of America, Radio Free Europe/Radio Liberty, Radio and TV Martí, Radio Free Asia, Radio Sawa/Alhurra TV
$270,000 Stichting.Net
Association of NFP’s in the Netherlands $38,279
Google: $29,083 ITT: $27,000 Other: $9,997 https://www.torproject.org/about/sponsors.html.en
![Page 13: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/13.jpg)
Past Funders DARPA and Naval Research Labratory
2001-2006 EFF – 2004-2005
![Page 14: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/14.jpg)
Tor Performance
![Page 15: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/15.jpg)
Number of Relays
![Page 16: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/16.jpg)
Number of Users
![Page 17: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/17.jpg)
Tor Tools Torbutton Tor Browser Bundle Vidalia TorCheck Arm Tor-ramdisk
Anthony G. Basile from Buffalo
![Page 18: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/18.jpg)
![Page 19: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/19.jpg)
Tor Control Port Telnet to the control port Create custom circuits (long or short)
Show live circuit information Change configuration on the fly Map a site to an exit node Reload a configuration
authenticate "“extendcircuit 0 a,b,c,…extendcircuit 0 a,b
setevents circsetconf confitemMapaddress google.com=a.bGetconf confitem
![Page 20: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/20.jpg)
Attacks
![Page 21: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/21.jpg)
Tor Passive Attack Vectors Traffic profiling – entry and exit analysis Cleartext exit node transmission Fingerprinting - OS, browser,
configuration, activity Timing correlation Network partitioning End to end Size correlation
![Page 22: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/22.jpg)
Tor Active Attack Vectors Compromised keys Malicious web servers Malicious Exit/Relay nodes DoS non-controlled nodes Timestamping and tagging Injecting or replacing unencrypted info Malicious Tor client
![Page 23: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/23.jpg)
Tor Client Side Attacks DNS rebinding Disbanding attack – javascript, java,
flash History disclosure Timezone information (partitioning)
![Page 24: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/24.jpg)
Social Engineering Attacks Getting more traffic
“Use my relay. I have huge tubes!” “Nick’s relay sucks” “I’ve added a feature to my node.”
Replacement 687474703a2f2f7777772e726f636865737465
72323630302e636f6d2f6861782f Partitioning
“Don’t use servers from this country” “These servers are amazing!”
![Page 25: Tor](https://reader034.vdocuments.us/reader034/viewer/2022051817/54847a30b4af9faf528b47a9/html5/thumbnails/25.jpg)
More Info www.torproject.org Metrics.torproject.org Blog.torproject.org Check.torproject.org @torproject