Tor Connections To Hidden Services Could Be Easy To De-Anonymize

← Back to Stories (view on slashdot.org)

Tor Connections To Hidden Services Could Be Easy To De-Anonymize

Posted by timothy on Sunday May 31, 2015 @11:33PM from the they-see-what-you-did-there dept.

angry tapir writes with news of a report presented Friday at Hack In The Box which outlines a counterintuitive fact about Tor: Identifying users who access Tor hidden services — websites that are only accessible inside the Tor anonymity network — is easier than de-anonymizing users who use Tor to access regular Internet websites. That's because the addresses of the Hidden Service Directories (HSDirs) used to index those Tor-network-only sites, though shuffled daily, can be predicted (and hijacked) with cheap brute-force techniques. "The researchers managed to place their own nodes as the 6 HSDirs for facebookcorewwwi.onion, Facebook's official site on the Tor network, for the whole day on Thursday. They still held 4 of the 6 spots on Friday. Brute-forcing the key for each node took only 15 minutes on a MacBook Pro and running the Tor relays themselves cost US$62 on Amazon's EC2 service.

15 of 50 comments (clear)

Min score:

Reason:

Sort:

The good thing is by gweihir · 2015-05-31 23:55 · Score: 5, Insightful

TOR is getting a lot more research attention now. That can only make it stronger in the long run.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
1. Re:The good thing is by Dunbal · 2015-06-01 00:41 · Score: 2
  
  TOR is getting a lot more research attention now. That can only make it stronger in the long run.
  Right. By that logic civil liberties have never been stronger. I mean they've been studied since ancient times.
  
  --
  Seven puppies were harmed during the making of this post.
2. Re:The good thing is by GoddersUK · 2015-06-01 00:59 · Score: 4, Insightful
  
  Well no. You can code out bugs, but you can't code out thugs. The bugs in the programme can be found and fixed, but if the government doesn't want to respect our liberties then, unless we have the numbers and strength to fight back, no liberties for us.
3. Re:The good thing is by Gallefray · 2015-06-01 01:00 · Score: 3, Insightful
  
  Right. By that logic civil liberties have never been stronger. I mean they've been studied since ancient times.
  Yes, but civil liberties aren't open source.
4. Re:The good thing is by gl4ss · 2015-06-01 02:45 · Score: 2
  
  well.. globally civil liberties have never been stronger.
  in USA they were maybe stronger just for a little while in the '90s, provided that you weren't black - and don't talk about civil liberties in '60s and talk even less about them in early 1900's. like, could you imagine blackwater operating domestically? that's what you fuckers had essentially.
  
  --
  world was created 5 seconds before this post as it is.
5. Re:The good thing is by GLMDesigns · 2015-06-01 02:51 · Score: 4, Insightful
  
  Our liberties have been further and further eroded as we've stopped calling them Individual Rights. Calling them civil liberties takes away the power, the self-awareness that comes from knowing that the right of speech (as for example) comes from YOU and can only be abridged by governments. Rights do not come from governments. Governments can either acknowledge and respect individual rights or abrogate them.
  
  --
  If you're scared of your govt then you need to further restrict its powers
  Vote 3rd Party in 2016 and beyond
6. Re:The good thing is by ltbarcly · 2015-06-01 03:40 · Score: 2
  
  The mantra that our liberties have been going away gradually is often repeated but not at all, or in any way, true.
  If you want to talk about domestic spying, how about:
  http://en.wikipedia.org/wiki/F...
  http://en.wikipedia.org/wiki/P...
  Plus, I guess you are only talking about white people, because the liberties of every other kind of people are very obviously less eroded than they were in the recent past. I think things like being allowed to marry a white person, or being allowed to buy a house is a pretty important liberty that some groups were denied, by the government, and now the government doesn't deny them those liberties. So that's a pretty big win for liberty.
  Blah blah blah, right do not come from governments, blah blah blah. The government can't 'create' rights, I guess, but it sure as hell is the only thing between you and the army of goons that would swoop in and deprive you of your life and property. I'm sure you think that you don't need the government to protect you, right? I mean you could just join together with your neighbors and protect yourselves without the government. But guess what? The 'government' is just all of us joining together to protect ourselves, that's literally all it is. So you can whine about the faceless 'them' coming along and stealing all 'yer liberty', but it's just a bunch talk-show-talking-point agitation propoganda bullshit that has been spoon fed to you and you are just puking back out onto the world without bothering to think about it critically.
  Humans long ago decided it was better to band together, because the alternative is to get robbed, murdered, or exploited by whatever gangsters happen to show up and defeat us in detail. We've developed fairly sophisticated ways of getting the good parts of government (protection, contracts, regulated externalized costs) without the bad parts (explicit oligarchy, autocracy, large scale warfare for the personal enrichment of leaders).
Tor's trust model has always been broken by nctritech · 2015-06-01 00:04 · Score: 4, Interesting

The simple fact that it uses "directory servers" for Tor stuff (including hidden services) means that there is centralization in the network. Centralization of control is the enemy of anonymous communications because it vastly shrinks the target surface area required to damage or intercept that communications. This is just another hole in the bottom of the anonymity boat for Tor users. A better system would publish services using the public key of a strong asymmetric encryption algorithm such that the only valid responses could be encrypted with the private key; flooding the network with bad information to turn yourself into the correct node for a given "hidden service" name simply wouldn't work.
1. Re:Tor's trust model has always been broken by nctritech · 2015-06-01 00:34 · Score: 4, Insightful
  
  It's possible that you have misunderstood what "public key" means. It does not mean that it is published for everyone in the world to see. In asymmetric encryption, each key consists of two parts: a public key and a private key. The public key is allowed to be known by anyone and can be used by anyone to encrypt something for the owner of the private key, or to decrypt something that was encrypted by the owner of the private key. That's why it is the "public key." Mere knowledge of what it is allows a person to securely encrypt what it sends to the private key holder and allows that person to validate that the person sending something to them IS the private key holder. It does not offer security in one direction (since one decryption key is "public") but it does offer validation in the direction that data security is not offered. Related: look up Diffie-Hellman key exchange for info on how asymmetric key pairs are used to initiate symmetrically encrypted secure data streams between hosts. Also look up how PGP keys are used to validate that an email was sent by a specific person and/or that the contents of the email were not changed by a "man in the middle."
  
  If you were considering the "published" part, "published" also doesn't necessarily mean that the services are in a nice easy list on some server somewhere for the FBI to download. Of course, the Tor directory servers obviously handle .onion domain name resolution and that makes them a huge problem. You know the garbled names that .onion sites use? My suggestion was to make that the public key and to do away with directory servers, using something like DHT instead.
  
  tl;dr: "Public key" doesn't mean "published key" and "published" doesn't necessarily mean "in an easy-to-read directory somewhere."
2. Re:Tor's trust model has always been broken by Burz · 2015-06-01 05:47 · Score: 3, Insightful
  
  This is a primary reason why I2P (Invisible Internet Project) exists. Its much less centralized than Tor, mixes other peoples' traffic with yours by default, and over the years has typically used stronger encryption than Tor. Its just more private and secure overall.
  The people who make the TAILS distro recognize Tor's shortcomings which is why they include I2P along with Tor. I2P isn't built to outproxy to the regular web (although it can), but you do get the ability to do fully decentralized/anonymized messaging and torrents, for instance, along with hidden websites. On top of being more private than Tor, its a protocol that's meant for general purpose use.
  https://geti2p.net/en/
Re:Misleading clickbait and FUD by weilawei · 2015-06-01 00:16 · Score: 3, Insightful

This is not de-anonymizing anyone.
Really? The slides go over the needed steps to become an HSDir... or several HSDirs... and perform a correlation attack to de-anonymize someone. -1, Overrated.

The researchers essentially brute forced their way into running Tor's "hidden service DNS servers" for a day.

You only need 4 days uptime to become an HSDir. That's a pretty insignificant bar. They also still held 4 of those 6 spots on day #2. It cost a pittance. -1, Overrated.

The new hidden service proposal that fixes this issue among plenty of other improvement is being worked on.
Possibly the only useful part of your comment. +1 Informative.
Re:This doesn't affect anonymity by weilawei · 2015-06-01 00:21 · Score: 2

It most certainly DOES affect anonymity. Read the slides, which explain how to set up a correlation attack. They can become the HSDirs for specific hidden services, for a pittance, and then they can run a correlation attack since you'll be having to go through them first to get to said hidden service.
How the fuck did this factually incorrect tripe get modded up?
Re:FBI by Noryungi · 2015-06-01 00:50 · Score: 2

I wonder if they're doing it already?
And how do you think they have been able to make multiple arrests in the Silk Road case? Hmmm...?
Gee, I mean, of course, Ross Ulbricht had pretty much zero SecOps, babbling this way and that on different forums, but it's still very suspicious he and other Silk Road operators and ''customers'' got arrested so fast.

--
The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
Does this really surprise us? by mitcheli · 2015-06-01 01:44 · Score: 2

With every major Nation in the world trying to glean intelligence from Tor, every major law enforcement agency trying to track down child porn and drugs, and several very high profile leaks involving highly classified information that have caused extreme harm to several western countries (the US not being the only one), and with several academic professors intrigued; does it not surprise us that the protocol of Tor (to include Bridges and Hidden Services) would be analyzed and profiled to the tiniest of details to determine areas of exploitation of the protocol?

--
Select from tblFriends where interesting >= 4;
Re:FBI by Anonymous Coward · 2015-06-01 01:49 · Score: 2, Informative

You could read the wired piece on how they caught DPR and actually find out.
Hint: It wasn't this.