Tor Connections To Hidden Services Could Be Easy To De-Anonymize

angry tapir writes with news of a report presented Friday at Hack In The Box which outlines a counterintuitive fact about Tor: Identifying users who access Tor hidden services — websites that are only accessible inside the Tor anonymity network — is easier than de-anonymizing users who use Tor to access regular Internet websites. That's because the addresses of the Hidden Service Directories (HSDirs) used to index those Tor-network-only sites, though shuffled daily, can be predicted (and hijacked) with cheap brute-force techniques. "The researchers managed to place their own nodes as the 6 HSDirs for facebookcorewwwi.onion, Facebook's official site on the Tor network, for the whole day on Thursday. They still held 4 of the 6 spots on Friday. Brute-forcing the key for each node took only 15 minutes on a MacBook Pro and running the Tor relays themselves cost US$62 on Amazon's EC2 service.

I'm posting as what coward?

pun intended

Re:I'm posting as what coward?

[antiperimetaparalogo]

eponymous (Greek language lesson intended)

The good thing is

[gweihir]

TOR is getting a lot more research attention now. That can only make it stronger in the long run.

Re:The good thing is

[Dunbal]

TOR is getting a lot more research attention now. That can only make it stronger in the long run.

Right. By that logic civil liberties have never been stronger. I mean they've been studied since ancient times.

Re:The good thing is

[GoddersUK]

Well no. You can code out bugs, but you can't code out thugs. The bugs in the programme can be found and fixed, but if the government doesn't want to respect our liberties then, unless we have the numbers and strength to fight back, no liberties for us.

Re:The good thing is

[Gallefray]

Right. By that logic civil liberties have never been stronger. I mean they've been studied since ancient times.

Yes, but civil liberties aren't open source.

Re:The good thing is

[gl4ss]

well.. globally civil liberties have never been stronger.

in USA they were maybe stronger just for a little while in the '90s, provided that you weren't black - and don't talk about civil liberties in '60s and talk even less about them in early 1900's. like, could you imagine blackwater operating domestically? that's what you fuckers had essentially.

Re:The good thing is

You can code out bugs, but you can't code out thugs.

Well, actually, you might be able to code out thugs, but the government wants to make that illegal.

Re:The good thing is

[GLMDesigns]

Our liberties have been further and further eroded as we've stopped calling them Individual Rights. Calling them civil liberties takes away the power, the self-awareness that comes from knowing that the right of speech (as for example) comes from YOU and can only be abridged by governments. Rights do not come from governments. Governments can either acknowledge and respect individual rights or abrogate them.

Re:The good thing is

[ltbarcly]

The mantra that our liberties have been going away gradually is often repeated but not at all, or in any way, true.

If you want to talk about domestic spying, how about:

http://en.wikipedia.org/wiki/F...
http://en.wikipedia.org/wiki/P...

Plus, I guess you are only talking about white people, because the liberties of every other kind of people are very obviously less eroded than they were in the recent past. I think things like being allowed to marry a white person, or being allowed to buy a house is a pretty important liberty that some groups were denied, by the government, and now the government doesn't deny them those liberties. So that's a pretty big win for liberty.

Blah blah blah, right do not come from governments, blah blah blah. The government can't 'create' rights, I guess, but it sure as hell is the only thing between you and the army of goons that would swoop in and deprive you of your life and property. I'm sure you think that you don't need the government to protect you, right? I mean you could just join together with your neighbors and protect yourselves without the government. But guess what? The 'government' is just all of us joining together to protect ourselves, that's literally all it is. So you can whine about the faceless 'them' coming along and stealing all 'yer liberty', but it's just a bunch talk-show-talking-point agitation propoganda bullshit that has been spoon fed to you and you are just puking back out onto the world without bothering to think about it critically.

Humans long ago decided it was better to band together, because the alternative is to get robbed, murdered, or exploited by whatever gangsters happen to show up and defeat us in detail. We've developed fairly sophisticated ways of getting the good parts of government (protection, contracts, regulated externalized costs) without the bad parts (explicit oligarchy, autocracy, large scale warfare for the personal enrichment of leaders).

Re:The good thing is

Can I marry a little girl now? No.

I could prior to 1870, 1930, etc depending on state.
Feminists changed that.

Re:The good thing is

[KGIII]

You are mistaking rights for freedoms. I have the freedom to harm you. I do not have the right to do so.

Re:The good thing is

[gweihir]

Making TOR stronger needs knowledge. Making civil liberties stronger needs the power to keep those pretending to serve the people in check. I leave it to you to spot the difference between the two.

Re:The good thing is

[gweihir]

You can code out bugs, but you can't code out thugs.

Hehehe, nice!

Re:The good thing is

[gweihir]

Dishonest governments that see their primary purpose in fucking over their subjects (as the US government does), is always strongly opposed to civil liberties and tries to reduce and negate them wherever possible. These governments see the population as a threat that will fight and remove them if it realizes what is actually going on.

The same thing is happening in most parts of the western world at the moment: Those in power have banded together against those they have sworn to serve.

Re:The good thing is

[gweihir]

Seriously? Secret laws. Secret courts. Extra-legal prisons. Universal surveillance. End of the rule of law (this means the law does not get applied to the police and those in power). Universal criminality. Etc.

Only those terminally dumb or terminally uneducated do not recognize this pattern from history.

Re:The good thing is

[gweihir]

Most pathetic tolling attempt of the week so far.

Misleading clickbait and FUD

This is not de-anonymizing anyone. This problem is already known and being worked on.

The researchers essentially brute forced their way into running Tor's "hidden service DNS servers" for a day. This could be used as a stepping stone for more complicated attacks, but by itself this is nothing.

The new hidden service proposal that fixes this issue among plenty of other improvement is being worked on. Hidden services need some love, but they are still the only way to run a service that has actually succeeded at protecting people from real, motivated, well funded bad guys.

Re:Misleading clickbait and FUD

[weilawei]

This is not de-anonymizing anyone.

Really? The slides go over the needed steps to become an HSDir... or several HSDirs... and perform a correlation attack to de-anonymize someone. -1, Overrated.

The researchers essentially brute forced their way into running Tor's "hidden service DNS servers" for a day.

You only need 4 days uptime to become an HSDir. That's a pretty insignificant bar. They also still held 4 of those 6 spots on day #2. It cost a pittance. -1, Overrated.

The new hidden service proposal that fixes this issue among plenty of other improvement is being worked on.

Possibly the only useful part of your comment. +1 Informative.

Re:Misleading clickbait and FUD

NO, Tor has whitepapers that FOR A FACT deanonymize Hidden Services in the wild. It's not cheap or quick, but it is possible and has been proven. Furthermore, hidden services are being suspiciously taken down or go missing all the time. Finally, NO ONE has yet said HOW the Silk Road servers were found.

Other anonymous systems like I2P, Gnunet, Freenet and so on, though far smaller and with far less research attention, still don't seem to have either the whitepaper exploits or the takedowns.

Re:Misleading clickbait and FUD

I have yet to read the paper, but I do believe that quite often the steps to perform a correlation attack are based on a very old research paper of tor where the network was both very different and a lot smaller, if this is the case here, it could be that its not actually able to perform correlation attacks.

But as I said, I still have to read it.

Tor's trust model has always been broken

[nctritech]

The simple fact that it uses "directory servers" for Tor stuff (including hidden services) means that there is centralization in the network. Centralization of control is the enemy of anonymous communications because it vastly shrinks the target surface area required to damage or intercept that communications. This is just another hole in the bottom of the anonymity boat for Tor users. A better system would publish services using the public key of a strong asymmetric encryption algorithm such that the only valid responses could be encrypted with the private key; flooding the network with bad information to turn yourself into the correct node for a given "hidden service" name simply wouldn't work.

Re:Tor's trust model has always been broken

[nctritech]

It's possible that you have misunderstood what "public key" means. It does not mean that it is published for everyone in the world to see. In asymmetric encryption, each key consists of two parts: a public key and a private key. The public key is allowed to be known by anyone and can be used by anyone to encrypt something for the owner of the private key, or to decrypt something that was encrypted by the owner of the private key. That's why it is the "public key." Mere knowledge of what it is allows a person to securely encrypt what it sends to the private key holder and allows that person to validate that the person sending something to them IS the private key holder. It does not offer security in one direction (since one decryption key is "public") but it does offer validation in the direction that data security is not offered. Related: look up Diffie-Hellman key exchange for info on how asymmetric key pairs are used to initiate symmetrically encrypted secure data streams between hosts. Also look up how PGP keys are used to validate that an email was sent by a specific person and/or that the contents of the email were not changed by a "man in the middle."

If you were considering the "published" part, "published" also doesn't necessarily mean that the services are in a nice easy list on some server somewhere for the FBI to download. Of course, the Tor directory servers obviously handle .onion domain name resolution and that makes them a huge problem. You know the garbled names that .onion sites use? My suggestion was to make that the public key and to do away with directory servers, using something like DHT instead.

tl;dr: "Public key" doesn't mean "published key" and "published" doesn't necessarily mean "in an easy-to-read directory somewhere."

Re:Tor's trust model has always been broken

>You know the garbled names that .onion sites use? My suggestion was to make that the public key and to do away with directory servers, using something like DHT instead.
The "garbled names that .onion sites use" are the first part of the SHA1 hash of the public key. Knowing the name is not enough to connect to a server, you need a list of introduction points for each onion service somewhere. If your proposal is to just base32 the raw public key and distribute that as domain names, this still doesn't solve the problem of actually getting a rendez-vous to the HS. This is what the current HSDirs do, they match addresses to descriptors, they give you introduction points.

As for using a DHT, this is what Tor currently does. You can't do away with the directory servers. What you seem to be proposing is to make *everyone* a directory server. This is not necessarily a good idea, the attack just goes from "publicly bruteforce the next best key" to "silently perform a sybil attack", which is not particularly better.

We know how to authenticate people, we already use ECDHE for key exchange, that's not an issue. The problem is building a distributed database where some people can set a record, everyone can query a record, but nobody can enumerate all the records.

Re:Tor's trust model has always been broken

[complete+loony]

Sure you need a directory service. But it needs to be tamper proof. OP is suggesting that all service names should be public keys. So all DHT records that would be published / fetched can be signed. And the connection to the service can also be signed.

That way noone can guess the current key for a known service. Then the only chance of a sybil attack is to convince someone that your key is the service they are looking for. Something that should only be possible by intercepting the first request.

Re:Tor's trust model has always been broken

Tor is written by military jarheads under contract to Uncle Sam with ideas that date back almost 20 years. Do you seriously expect a fully decentralized architecture from them, let alone the best that any researchers could design? What they call a DHT is NOT a DHT, it's nothing more than a telephone book round robin'd among all the relays. While that's nice, it's highly targetable.

Re:Tor's trust model has always been broken

[Burz]

This is a primary reason why I2P (Invisible Internet Project) exists. Its much less centralized than Tor, mixes other peoples' traffic with yours by default, and over the years has typically used stronger encryption than Tor. Its just more private and secure overall.

The people who make the TAILS distro recognize Tor's shortcomings which is why they include I2P along with Tor. I2P isn't built to outproxy to the regular web (although it can), but you do get the ability to do fully decentralized/anonymized messaging and torrents, for instance, along with hidden websites. On top of being more private than Tor, its a protocol that's meant for general purpose use.

https://geti2p.net/en/

Re:Tor's trust model has always been broken

>Do you seriously expect a fully decentralized architecture from them, let alone the best that any researchers could design?
Best in the industry and pretty good use of taxpayer money. Otherwise we'd have people driving interstate to murder a poster they disagreed with (happens)

Re:Tor's trust model has always been broken

[burbilog]

This is a primary reason why I2P (Invisible Internet Project) exists. Its much less centralized than Tor, mixes other peoples' traffic with yours by default, and over the years has typically used stronger encryption than Tor. Its just more private and secure overall.

Unfortunately it does not scale well. Some time ago Russian government created new censorship laws and popular book piracy site Flibusta responded with "trainig", turning off its regular website and leaving only Tor and I2P sites, to see how well it works. And suddently I2P was bogged down. It seems that I2P architecture wasn't designed to handle serious traffic and serious amount of users.

FBI

[swamp_ig]

I wonder if they're doing it already?

Re:FBI

[weilawei]

If they weren't before, they will be now? /cynical

Give it a week.

Re:FBI

[Noryungi]

I wonder if they're doing it already?

And how do you think they have been able to make multiple arrests in the Silk Road case? Hmmm...?

Gee, I mean, of course, Ross Ulbricht had pretty much zero SecOps, babbling this way and that on different forums, but it's still very suspicious he and other Silk Road operators and ''customers'' got arrested so fast.

Re:FBI

You could read the wired piece on how they caught DPR and actually find out.

Hint: It wasn't this.

This doesn't affect anonymity

[BlueBlade]

If I understand correctly, this attack has a similar effect to a DNS attack : you replace a server for an address with one of your own servers instead, so that users requesting the service will be routed to you.

While this is bad, I'm not sure how it affects anonymity in any way. Obviously, the spoofed service might try to serve some Tor vulnerability to the users to identify them, but this relies on finding an actual weakness in Tor, or in the user's setup, to identify them.

Re:This doesn't affect anonymity

[weilawei]

It most certainly DOES affect anonymity. Read the slides, which explain how to set up a correlation attack. They can become the HSDirs for specific hidden services, for a pittance, and then they can run a correlation attack since you'll be having to go through them first to get to said hidden service.

How the fuck did this factually incorrect tripe get modded up?

Re:This doesn't affect anonymity

This technique will give attackers control over one end of the connection, but in order to perform traffic correlation attacks the attacker would also need to have visibility into the entry point. This can be achieved by someone who can monitor users' traffic before it enters the Tor network. For example, a government monitoring its Internet users through ISPs...

It sounds like you're the one that doesn't know what they're talking about.

Re:This doesn't affect anonymity

[weilawei]

And we have plenty of proof that they do monitor at ISPs. QED. Thank you for proving my point.

Re:This doesn't affect anonymity

My ISP != random people on the internet. So yea, saying my ISP could hack/track me is not that groundbreaking.

Re:This doesn't affect anonymity

TOR is supposed to stop your ISP from determining what hidden service you are connected to. The claim is that this attack overcomes that.

Re:This doesn't affect anonymity

[BlueBlade]

Well, it took 10 years, but I'm done for good with this site. Thanks to you for being the last tipping impulse, I guess.

No shit Sherlock

Ask Dread Pirate Roberts helm man, but hurry. In a few he will be asshole deep in the pokey.

Does this really surprise us?

[mitcheli]

With every major Nation in the world trying to glean intelligence from Tor, every major law enforcement agency trying to track down child porn and drugs, and several very high profile leaks involving highly classified information that have caused extreme harm to several western countries (the US not being the only one), and with several academic professors intrigued; does it not surprise us that the protocol of Tor (to include Bridges and Hidden Services) would be analyzed and profiled to the tiniest of details to determine areas of exploitation of the protocol?

Re:Does this really surprise us?

[CaptainDork]

This is at the core of a much larger issue:

In the beginning, computer knowledge was in the hands of an elite group who had the special attribute of simply giving a shit while the rest of us gawked at the Hula Hoop®.

As the public came to appreciate and embrace, not only the benefits of ownership, but the magnitude of bullshit and incompetence of the computer-elite, and the public began to educate themselves regarding best practices in self defense, the playing field warped into a much more horizontal configuration.

Unlike the stratification of the computer geniuses at the top and the unwashed at the bottom, social connections allow for those at the top to lift those at the bottom into a more informed mob that (and this is important) uses precisely the same basic tools as everyone else does.

The United States government, alone, has a large contingency of top-tier coders and smart-ass computer geeks, but private industry, organized criminals, and lone wolves along with a brazilian hobbyists and students -- world-wide -- make it statistically impossible for the US government to be very effective for very long.

The future is clear in this regard: Governments are going to have to introduce inequity that separates them from the masses in order to dominate.

For reference, see the weapon inequity in the US.

Rabid 2nd amendment trolls are campaigning for "open carry" of pea-shooters while the military is equipped with tanks, grenade launchers, fighter jets, napalm, smart bombs, drones, aircraft carriers, etc.

Until governments gain access to, and forbid citizen ownership of, superior hardware and software, we'll continue to experience the circus we have today.

Re:Does this really surprise us?

FALSE, NO "extreme harm" was done to any country by the leaks, not even any bit of "harm".
Leaks DO NOT inflict "harm".
Leaks do one thing and one thing only, they EXPOSE your dirty laundry of SECRETS that you shouldn't be doing/acting like in the first place, and they EMBARRASS you and your shady underhanded DEALINGS in front of your peers (who in this case and topic of the leaks are SAINTS in comparison to the USA).

Re:Does this really surprise us?

300 MILLION pea shooters picking off the military, government and corporate apparatus one at a time when they come and go from work and as they sleep at night will overthrow that triumvirate in a month or less out of nothing but fear of death alone.
And it won't take 300 million either.
Probably only 300 good patriotic teams spread around the country picking off the unsecured elites and leaders one by one.

Does anybody think TOR is really safe from NSA?

Isn't it cheap enough for various intelligent services to just participate in the TOR network by adding large numbers of servers under their control and monitoring incoming and outgoing traffic? If they have a high enough portion of the entire TOR network, wouldn't they be able to track traffic. (Not need to be always--even a low hit rate would mean you could trace who is talking to whom

Re:Does this really surprise us????

>Until governments gain access to, and forbid citizen ownership of, superior hardware and software, we'll continue to experience the circus we have today.

Intel AMT/Vt/VPRO

>300 MILLION pea shooters picking off the milita
You can't marry a girl child now.
You could for all of human existance untill feminism in the 1870s.

Think about that.