Slashdot Mirror

← Back to Stories (view on slashdot.org)

MIT Creates Tor Alternative That Floods Networks With Fake Data (softpedia.com)

Posted by timothy on from the can't-we-just-use-trolls? dept.

An anonymous reader writes with word that MIT researchers "created an alternative to Tor, a network messaging system called Vuvuzela that pollutes the network with dummy data so the NSA won't know who's talking to who." Initial tests show the systems overhead adding a 44-second delay, but the network can work fine and preserve anonymity even it has more than 50% of servers compromised.

115 comments

  1. Great, just what we need! by U2xhc2hkb3QgU3Vja3M · · Score: 4, Insightful

    More wasted bandwidth!

    1. Re:Great, just what we need! by sinij · · Score: 5, Insightful

      Disagree. No cost is too high for protecting our freedoms.

    2. Re:Great, just what we need! by alvinrod · · Score: 3, Insightful

      Which the government could easily spare us of needing if they'd only quit illegally spying on their citizens.

    3. Re:Great, just what we need! by JoeMerchant · · Score: 4, Interesting

      This is actually a method that a (partially) top-secret government installation used back in the 1980s. They have a huge campus, with network covering all of it, but they run really small packet size and keep a healthy quantity of random BS traversing the network at all times, so even before any interceptor can start working on the top-secret encryption, they've got to sort all the chaff packets. Also helps when the academic types get careless with secret info and forget to use the encryption layer, still bloody well impossible to sift the 0.001% interesting traffic out of the garbage when packets are flying around with 1 byte payloads.

    4. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      What do you mean with wasted? It is done with a purpose.

    5. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      Unused bandwidth is wasted bandwidth.

    6. Re:Great, just what we need! by KGIII · · Score: 1

      We need something like this, something P2P, that sends out garbage data to be picked up by tracking networks. Poisoning the well, so to speak.

      --
      "So long and thanks for all the fish."
    7. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      If the government does it, it's not illegal. The government makes and enforces the laws. It may be immoral, it may be unjust, but it cannot be illegal.

    8. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      Bandwidth cannot possibly be scarce, or we wouldn't have individual streaming instead of broadcast over IP. Anyway the bandwidth overhead is insignificant compared to other junk content such as ads.

    9. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      It's not as simple as that. A lot of Internet connections are sold overprovisioned. The ISP can sell the connection for certain price because it assumes that not all customers would be using the full bandwidth concurrently. If more users start clogging the pipes, the prices go up.

    10. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      I'm not whining. I am skilled, a professional, and my spoken / written statements should serve as notice to you corrupt incompetent that myself and other people who run the networks are about to eat your lunch and bury you.

    11. Re:Great, just what we need! by leftover · · Score: 2

      You fail high-school civics.

      --
      Bent, folded, spindled, and mutilated.
    12. Re:Great, just what we need! by EmeraldBot · · Score: 2

      > This is actually a method that a (partially) top-secret government installation used back in the 1980s.

      Yeah right. Cool story. Now where is the proof?

      Oh yeah, "partially top-secret."

      Proof that you, Mr. Anon, have no experience with governmental projects. It's rather common to have compartmented access, and for the project to have different parts in varying degrees of secrecy. He doesn't need proof, it's an anecdote, and you're perfectly welcome to throw it away.

      But, this sounds like... Emm... A security technique I could... easily forsee such a place using. It's certainly a good one, if rather stressful on your data lines...

      --
      "Set a man a fire, he'll be warm for the rest of the night. Set a man afire, he'll be warm for the rest of his life."
    13. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      It's an effective strategy.

      "That's the way the ruling class operates in any society. They try to divide the rest of the people. They keep the lower and the middle classes fighting with eachother, so that they, the rich, can run off with all the fucking money. Fairly simple thing, happens to work."

      Fill the spectrum with lots of noise and you'll have enough time to get away with anything. Ads, ads, ads, news story after news story about how terrible the world is and we need to live in fear.

      Then, hey, let's do the same thing: If the government wants to spy on their own people, fill all the communication with bullshit so they can't discern fiction from truth. By the time they actually do figure something out, they'll finally realize that most American men are using the Internets for porn, and most American women are using the Internet to find out their husbands are looking at porn.

      In essence, it will just lead to the same fucking conclusion as the human race has had for thousands of years: we like to fuck.

      This means that all the mass surveillance won't reveal anything new, and is just another means to scare people, such as yourself, from breaking the bullshit rules that the rich and ruling classes do on a regular, daily basis. The thing is, nobody is watching the rich, because the rich have money, and money means power. Since you're not rich, they can find something, and stop you before you get rich. Thus, preventing the spread of wealth, and thereby keeping people in line with whatever pecking order the rich dictate.

      I say, fill the spectrum with constant talk about the most benign, bullshit things: gardening tips, how to tie a tie, and my favorite, staring at the color brown. This way, they, the NSA and the CIA and FBI, will be so fucking bored with what they're finding, that they'll abandon the project altogether, and we can stop the fear mongering and people who do pay attention (not me) can actually live a fulfilling life.

      Run scared all you want. I ignore all the BS and just do whatever the fuck I want.

    14. Re:Great, just what we need! by ledow · · Score: 2

      Ah, you mean "defeated by any trivial filter".

      Security through obscurity (which is what this is) is doomed to fail. It *can* work, for short periods, when it's unexpected, when people aren't really looking (how many people just have a "secret URL" on their blog to get into the admin interface so that it's not publicly visible - doesn't stop people finding it), etc.

      But anything like this? Pointless. And one academic getting careless with encryption even once would likely see them sacked in such a place.

      It's not at all hard with a brief packet capture to find some common element or even trace a particular conversation of interest in - quite literally - seconds. Hell, I run a small commercial network and we transfer Terabytes over it every single day. Just that sheer volume is more obfuscation than anything else. Have you seen how long it takes to store those kinds of packet captures and apply filters when you're talking dozens of terabytes of data? Nothing to do with crafting them, that's a Wireshark tutorial and ten minutes. But actually applying them needs a lot of data filtering.

      But, still, I call bullshit. They're just playing at it if they are really doing that for that purpose. It would be the work of a moment to immediately alert someone and discard any unencrypted packets on such a network. Generating costly fake traffic that gets in your way, slows things down, and could bollocks up your own data investigations? Pointless.

    15. Re:Great, just what we need! by Opportunist · · Score: 1

      That depends entirely on whether there is some supreme set of rules your government MUST heed. Most civilized countries that are not run by a group of nepotists got something like that. Hell, even those Arabian theocracies have something like that (in their holy book).

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    16. Re:Great, just what we need! by Anonymous Coward · · Score: 4, Interesting

      Back in the early 1990s, when designing a secure network, on the physical side, the guide was to place the cables in conduit that would be positively pressurized, and if the pressure went down in the pipe, all cables would be cut. The mechanism that swung the axe was very sensitive, just to keep someone from attaching something to the pipe, pressurizing the attachment, then cutting in under pressure. The pressure varied as well randomly, so if someone cut in at the wrong pressure, it would also trigger the "cut all links" circuit.

      The same book also stated exactly as the parent -- you had encrypted traffic flowing on the network at all times. Of course, this book was dated -- they preferred ring topologies (ATM... and no, not the teller machine... the network with 53 byte packets) because all the machines on there could cough up a random packet and nobody would be the wiser. With switches, it becomes a bit more tricky to have encryption as noise without making the links unusable due to congestion.

      The ironic thing -- this was a book pitched for basic security for the enterprise, when businesses actually really cared about security.

    17. Re:Great, just what we need! by Anonymous Coward · · Score: 1

      Not true. I can beat any filter you can come up with.

      I send constant packets that are 1024 in size and contain random data that is encrypted. once in a while a real message packet that is padded with random data and encrypted is sent along.

      you can not detect any difference between the fake and the real packets because I made sure the real packets look like fake packets. works great and got me an A+ in advanced CS security class, I got it past the NSA ex spook teaching us. Bet him my grade that I could get data past him no matter WHAT he used. and I was successful enough that he introduced me to a few people.

    18. Re:Great, just what we need! by Visarga · · Score: 2

      I thought about this. How can we send a fragment of a file from node A to B without implicating node B. Both as an uploader or downloader, a rouge MPAA node could implicate the other party. Installing intermediary nodes would only implicate the intermediaries.

      How can we anonymize the data itself? If we use a third node, C, to organize A and B, it could store data in encrypted fragments on various nodes and put the keys on different nodes, then instruct a downloader from where to get all the pieces. That way no node is choosing what to seed, they would just download a number of encrypted packets they know nothing about and serve them on demand.

      But the downloader could still tell where it got its data from. So we need to make it such that unrelated fragments are also included in the decoding process to create confusion. That way, it would be hard to know which fragments are really from the desired file and which are just extra fragments that are there just for show. It could be made in such a way that all the data the node has stored (including those anonymous encrypted fragments) are included in the decoding process in a way. So now the downloader can only assume that all the network is to blame or no-one is more blameworthy than anyone else. Of course the network should carry enough legal content to make it legit, otherwise it could be blamed as a whole.

      Well, I am sure people smarter than me have already thought of how to do anonymously do P2P.

    19. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      If they are spying on it's citizens they are doing a really bad job. The paranoia surrounding the governments surveillance measures has created a group of people who think they are actually worth spying on. The psychopaths that committed the murders in California filled their Facebook page up with their cheerleading of violent Jihad. And when these murders entered the US they passed all of the security background checks but their social network postings where not checked because that is not government policy. Had the government did a quick search they might have sent these killers back to Pakistan. The punk who murdered people in the South Carolina church also published his thoughts online as well. There have been numerous successful security breaches in both private and governmental computer systems. The government does not need to use mass surveillance programs and the documents Snowden released actually contained information stating that mass Internet surveillance programs were a waste of resources and terminated. The government already has access to a lot of personal data collected on tax returns, drivers licenses, property deeds, and even marriage licenses. If you pop up on their radar this information alone is all they really need to get started. The government also has the tools needed to go after all your electronic communication records. What the government does not have is any where near the resources, both human and technology wise, to apply these methods on the entire population.

    20. Re:Great, just what we need! by KGIII · · Score: 1

      rogue*

      I like where you're going with it but it also has to be filled with random data and there'd need to be enough exit nodes, across the world ideally, to simply enable one to not just sort-of multicast their traffic but to serve others and to serve the garbage data. Yes, there would be increased latency but as much of it is just sending out spoofed traffic and forwarding/receiving requests on behalf of others then it might not be too bad?

      The idea that I'm thinking of isn't just to enable people to pirate stuff but to make it so that the data collected by tracking companies is worthless. The two can go hand-in-hand nicely, I suspect.

      A long time ago, and I mean ages ago, I had an application that enabled me to use not just proxies but it had a round-robin proxy setting where not just one proxy would be used but individual requests would be sent through different proxies and, somehow, this was reassembled programmatically on my end via the application. Some Ghost Proxy application or something like that - maybe 10-15 years ago.

      So, just a single page loading would be multiple HTTP requests and those would all got through different routes so that it was damned near impossible to tell where I was coming from. I'm thinking of something like that but, at the same time, sending out scads of junk data at the same time. So that it's not just routing everything out through multiple nodes but it's routing out a bunch of junk. This should make tracking all-but-useless assuming people block tracking scripts, tracking cookies, beacons, and things of that nature. They'd still be able to weed out some useful metrics but it'd be difficult.

      That's kind of what I'm thinking and it would, quite probably, increase privacy and security with regards to thwarting the MPAA/RIAA. It might also have some value in poisoning the data well that the Three Letter Agencies have been scooping up. I'm sure the powers that be will frown on such a thing because it might be used for evil but, frankly, I'm okay with that.

      --
      "So long and thanks for all the fish."
    21. Re:Great, just what we need! by Anonymous Coward · · Score: 5, Funny

      We need something like this, something P2P, that sends out garbage data

      We have this already, it's called APK.

    22. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      It's an absolute truth: Bandwidth which is not used can not be saved and is thus wasted. Your point is that some of that bandwidth doesn't actually exist. There is no point discussing whether something that doesn't exist is wasted or not. But let me just say this: If ISPs took the side of their customers and defended them against snooping instead of allowing others to snoop and even participating with deep packet inspection and traffic manipulation, then we wouldn't have to defend ourselves. If that defense leads to an imbalance in the ISPs' calculations, then that is their own damn fault.

    23. Re:Great, just what we need! by MitchDev · · Score: 1

      No what is a waste is that something like this is even needed. But the government has forgotten it is supposed to fear the citizens, not the other way around...

    24. Re: Great, just what we need! by Anonymous Coward · · Score: 1

      Someone came up with a BitTorrent client mixed with a TOR alternative (which only serves that client). Didn't catch on yet but the idea was everyone was forced to act as a 'TOR' node if they were running the client, and all traffic was encrypted such that each node knows where it came from and where it's going (both other nodes in the network) but they don't know if those are the final addresses or just other hops, and it's encrypted so they don't know what it contains.

      It sounds like this would run somewhat seperately from regular BitTorrent, so they wouldn't need exit nodes (though it would need a significant following), of course it would use more bandwidth but if mpaa can't catch you it's probably worth it to most

    25. Re:Great, just what we need! by JoeMerchant · · Score: 1

      In the 1980s it worked well enough, based on the premise that you'd need a hell of a network traffic processor to sort out all the crap, and unobtrusive portable PCs just weren't up to the task, back then. At least, that's what the network security officer was shining me on with during my interview - I nodded politely, having already decided that the place was too full of lies, contradictions, and sources of radiation for me.

    26. Re:Great, just what we need! by JoeMerchant · · Score: 1

      See also: Steganography: http://mangocats.com/stegamail... (and many others)

    27. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      NO. You're an idiot. It's not wasted bandwidth. It's absolutely necessary to prevent correlation, timing, and other analysis attacks.
      Furthermore, a proper network fill strategy will allow you to choose the amount of bandwidth you dedicate to the network overlay.
      The overlay will then keep that subpipe filled with junk traffic at all times and will reduce the amount of fill to allow whatever real traffic needs to pass down that bandwidth limited pipe.
      You want to send a 10GiB file, 100% real, 0% fill.
      You want to IRC with someone, 10% real, 90% fill.
      You want to go get groceries, 0% real, 100% fill.
      The only thing you need to do is pick the maximum amount of bandwidth you wish to dedicate to the overlay network.
      Which can be less than the overall pipe you've ordered from your ISP.
      It's really no different than if you were seeding torrents 24x7x365 and set Vuze to only use 1Mbps out of your 5Mbps ISP feed.

    28. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      How does the receiving end know when a message isn't garbage without letting the man in the middle know?

    29. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      You fail at realism.

    30. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      You're deluding yourself: you're just doing what you're allowed to do. You're not a threat to anyone. The moment they determine you're a nuisance, they'll let you know just how utterly powerless you are.

    31. Re:Great, just what we need! by Impy+the+Impiuos+Imp · · Score: 1

      Multibillion-dollar installations crammed with more processing power than a Google data center disagree with you. They don't have buffoons hired to deal with it. These are the people believed to have inserted vulnerable keys into the earlier standards.

      --
      (-1: Post disagrees with my already-settled worldview) is not a valid mod option.
    32. Re:Great, just what we need! by Impy+the+Impiuos+Imp · · Score: 1

      Do they need the full Netflix future bandwidth where every house is watching 5 4k streams? Just to hide text messages and sma files?

      --
      (-1: Post disagrees with my already-settled worldview) is not a valid mod option.
    33. Re: Great, just what we need! by maugle · · Score: 2

      I assume the receiver would attempt to decrypt every package and simply throw out any failures.

    34. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      You can't make that argument without at least saying what freedoms you are talking about and how this protects them.

      Don't worry, I'll wait.

    35. Re: Great, just what we need! by Anonymous Coward · · Score: 0

      Freenet has always done something like that: it sends data around arbitrarily, so when you download something it comes from a number of hosts that don't necessarily have anything to do with that data. You can identify the hosts, but it doesn't tell you anything. Meanwhile, I don't think it's possible to distinguish between a user-initiated request, and a network-created one that's just used to shuffle data about, so both parties to any transfer have plausible deniability.

      Needless to say, there's a lot of child porn on there.

    36. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      You are making a whole lot of assumptions and didn't RTFA.

      1) Security through obscurity. This isn't that. It uses proper encryption to hide the content, the chaff is to conceal the metadata only.
      2) the chaff packets will be easily distinguished. Seeing as cloaking is a main design goal that would be retarded.
      3) selective capture and filtering isn't a thing to greatly reduce processing times of interesting packet data sets from massive sources.

      I call bullshit on your bullshit.

    37. Re:Great, just what we need! by sinij · · Score: 1

      This is good concept when you don't have computing power to use strong symmetric encryption. Like back in 80s. Or with 90s export-grade crypto.

      Today this is largely irrelevant. Your smart fridge is capable of AES256 and there is no feasible way to brute force through that. This is not where cryptography fails and not how it is usually attacked.

      Because modern symmetric cryptography is so strong, nobody attempts to attack it directly. Instead, it is always side-stepped. You attack key negotiation and extract symmetric keys. You degrade protocols so it is not used. You exploit violations of key assumptions (e.g. weak entropy). You exploit someone who has a key to act on your behalf. To summarize - you don't need to send junk if you use appropriately strong cryptography.

      Still, this is not what the original article is talking about. They are talking about flooding fake data to overwhelm spook's ability to collect and analyze any of it. If they have capacity to store 10GB/s of data and you are sending 20GB/s, then encrypted or not they only can only retain 50% of it. This is entirely different from the question of what can they do with it (e.g. metadata analysis) or if they can break the crypto (e.g. derive symmetric keys).

    38. Re:Great, just what we need! by Anonymous Coward · · Score: 0

      Ppl used to complain about this in newsgroups if your signature had more than 5 lines... is that still taboo?

  2. Not TOR replacement... by wbr1 · · Score: 3, Insightful

    This is potentially good for an obfuscated messaging service, not an encrypted internet proxy for all traffic.

    --
    Silence is a state of mime.
    1. Re:Not TOR replacement... by U2xhc2hkb3QgU3Vja3M · · Score: 1

      The effectiveness will depend on the dummy data being sent. If they use sentences like "The chicken is in the coop", it might be easy to filter out.

    2. Re:Not TOR replacement... by SuricouRaven · · Score: 2

      If they really need something that can't be easily identified as fake, I'm sure they can use markov chains are an important part of any consideration when the weather has started to darken.

    3. Re:Not TOR replacement... by Anonymous Coward · · Score: 0

      How do I know you're the real chicken?

    4. Re:Not TOR replacement... by JoeMerchant · · Score: 1

      This is potentially good for an obfuscated messaging service, not an encrypted internet proxy for all traffic.

      Kind of how I feel about bitcoin...

    5. Re:Not TOR replacement... by aaaaaaargh! · · Score: 1

      That should be easy to defeat even with fairly shallow parsing methods, and even easier with semantic techniques.

    6. Re:Not TOR replacement... by shellster_dude · · Score: 1

      The article, though not as clear as it maybe should have been, clearly states that all traffic is encrypted using asymmetric encryption between the users, and I would also infer from the setup, further encrypted between the end-user and the server (it mentions that all users know each other public keys as well as the service's public key, thus implying asymmetric encryption). Therefore, the fake traffic need not be particularly realistic, as long as the overall length of the unencrypted traffic somewhat realistically mirrors normal conversations. After the multiple rounds of encryption, both a fake and a real message should be indistinguishable from random bits.

    7. Re:Not TOR replacement... by MitchDev · · Score: 1

      Does it look encrypted?

    8. Re:Not TOR replacement... by Anonymous Coward · · Score: 0

      Network fill within the overlay network is good for any overlay network. Properly done it is transparent to the user, up to the amount of bandwidth they choose to commit to that network.
      It is also completely compatible with 'encrypted internet proxy for all traffic', because said proxy (ahem, exit) points to the internet will remove the fill traffic at that point.

    9. Re:Not TOR replacement... by Anonymous Coward · · Score: 0

      A very major feature of Tor is that the latency is low enough for normal browsing. 40 seconds to send or receive is acceptable when your number one priority is avoiding interception for some cloak and dagger BS. It's far less acceptable when you simply want to use the wider internet absent government firewalls and tracking.

      This doesn't provide a functional alternative for the most common use case of Tor.

  3. "Even with more than 50%..." by Anonymous Coward · · Score: 2, Informative

    I wonder what % of Tor servers are compromised. I abandoned Tor when I realised it didn't mix in junk traffic like this, as traffic analysis through compromised nodes/routers is such an obvious vulnerability that it seems to render Tor worthless.

    1. Re:"Even with more than 50%..." by KGIII · · Score: 1

      Tor has always been subject to snooping if you leave the Tor network. So long as you remain on the .onion network it is assumed that it is still safe.

      --
      "So long and thanks for all the fish."
    2. Re:"Even with more than 50%..." by Anonymous Coward · · Score: 0

      Any research on this to point to so I can learn more? I'm trying to learn more about Tor and security in general.

  4. Virtual Camouflage by Anonymous Coward · · Score: 1

    I was talking to my Google-employee brother the other day and voicing my prediction that 'virtual camouflage' would become a defense against data mining and spying, similar to as described in the article. He thought the idea was ridiculous, and even if it were to come to pass, would be defeated by statistical means. Regardless, secure p2p communication is an arms race, and the virtual environment closely resembles nature in unexpected ways.

    1. Re: Virtual Camouflage by Anonymous Coward · · Score: 0

      We all need Google-employee brothers because only they are the smart ones! However I agree with him. The idea does sound stupid. Never shit on a stupid idea though. Compression was stupid at one time too.

    2. Re:Virtual Camouflage by Anonymous Coward · · Score: 0

      To be fair, if he didn't think some data could be mined "by statistical means" then he wouldn't have been offered a job at Google.

      Google doesn't have to test the accuracy of its data, just leave sponsors to decide which sorts of targetting improve sales.

    3. Re:Virtual Camouflage by Lumpy · · Score: 1

      His prediction is horribly out of date, This technique has been in use for decades.

      --
      Do not look at laser with remaining good eye.
  5. No thanks. by drunk_punk · · Score: 1

    MIT was once the number one non-profit Department of Defence contractor in the nation. Don't know how much funding they get these days but it certainly seems as though this solution is provided to you by and for the U.S. Government.

    1. Re: No thanks. by Anonymous Coward · · Score: 1, Insightful

      Stop spreading suspicion and if the system can fail show how.

    2. Re:No thanks. by KGIII · · Score: 4, Interesting

      Disclosure: MIT is my alma mater and I am biased. I have also served in the military and I have worked with DoD as a civilian.

      Now, some folks here are aware that I dealt with traffic modeling. Some of *my* research was paid for by the Department of Defense. (You'd be kind of silly to not understand the value of improving traffic throughput in a crisis. There are also benefits to optimized traffic in and on military facilities, both vehicular and pedestrian)

      I can not speak for this department nor for this research. I can, however, say that the DoD had absolutely no influence on my research. No, not one little bit. They wanted regular reports to see that they were getting a bit of work for their money. They did not control, direct, or hinder the research in any way other than the funding. They never exerted any control, never stopped me from publishing, nor did they come in and spy on the project.

      I can't say what has happened here but, honestly, I think you're drunk. How would the DoD benefit from this? Given that it is MIT, I'm quite sure you can see the source. Rather than speculate, give us a good reason to believe you other than a "hunch" or similar.

      --
      "So long and thanks for all the fish."
    3. Re: No thanks. by Anonymous Coward · · Score: 0

      The simple fact that this defense only (potentially) works against real-time eavesdropping and does nothing to stop after-the-fact analysis. Storage has gotten to the point where ALL data can be recorded, especially by agencies specifically tasked with that, so the junk data doesn't really do much of anything. It's the same argument in defense of tracking cars - "there are so many cars that they can't possibly watch them all!" that's not the problem, the real problem is when every single car is recorded and then after-the-fact they decide to analyze yours.

    4. Re:No thanks. by drunk_punk · · Score: 1

      I think what I was trying to get at is large Universities are closely tied with various government entities through grant funding and if one of those Universities, say, figures out how to compromise Tor *cough*Carnegie Melon*cough* or any other piece of tech it's reasonable to assume that ANY entity in any branch of government could "request" that information.

      I'm not saying they influence research. I'm saying that it's reasonable to assume they are fully briefed on it. Including, but not limited to, how to circumvent it.

      Not drunk.

      Yet.

    5. Re:No thanks. by KGIII · · Score: 1

      Well, if they paid for the research or even helped to fund it then they've a right to the results of that research so yeah? If there are any flaws then they'd be privy to them, as would anyone else with access to the research. Knowing MIT? They'll want more "funding" if they want to get the flaws researched. Those guys are always, and I mean always, wanting me to give them more money.

      --
      "So long and thanks for all the fish."
    6. Re:No thanks. by Anonymous Coward · · Score: 0

      now i know who you are - david?

    7. Re:No thanks. by KGIII · · Score: 1

      You are correct. I think. And you might be?

      --
      "So long and thanks for all the fish."
  6. Anathem by nullchar · · Score: 1

    This is just like in Neal Stephenson's novel Anathem. Except when the system became fragile, the noise was mixed with the signal so most communications became worthless.

  7. What is happening at MIT? by Anonymous Coward · · Score: 2, Interesting

    Any bozo could write random garbage and waste bandwidth. Write something that can split encrypted data at the client through multiple nodes and recombine encrypted packets at the server. And make it an IP level protocol! Idiots!

    1. Re: What is happening at MIT? by Anonymous Coward · · Score: 0

      That sounds pretty good.

    2. Re:What is happening at MIT? by Anonymous Coward · · Score: 0

      Someone who obviously doesn't know jack shit about a topic and thinks other people are the idiots. lol

    3. Re: What is happening at MIT? by Anonymous Coward · · Score: 0

      IP is already a packet based technology. To provide a virtually layer on to of IP to resemble the data from multiple sources is not an impossibility. In fact, IP was already intended to do something similar if a routing point went down. It would be slow (like tor) but would be way more reliable if it was down to the communication layer. So to implement a multi-sourced encrypted later on top of IP should be possible. Not easy but entirely possible.

      Lesson... Think before you write. Idiot!

    4. Re: What is happening at MIT? by Anonymous Coward · · Score: 0

      You mean like what Tor already does?

    5. Re:What is happening at MIT? by Anonymous Coward · · Score: 0

      What do you mean? In which way does not know jack shit?

    6. Re: What is happening at MIT? by Anonymous Coward · · Score: 0

      Tor only routes through one exit node at a time. See the problem now idiot?

    7. Re: What is happening at MIT? by Anonymous Coward · · Score: 0

      Tor only has "one" exit node. I think what he's saying is multiplex through many nodes and recombine at the endpoint. That would work well unless someone is sniffing at the endpoint. But that problems exists for tor as well.

  8. and.. by Anonymous Coward · · Score: 1

    i wash my hands with a firehose

  9. Re: Congratulations and by Anonymous Coward · · Score: 0

    The sarcasm in Your comment is too obvious. The Innocent have the most to hide, relatively speaking.

  10. vuvuzelas in politics by Anonymous Coward · · Score: 0

    First time I heard vuvuzelas was at Ronald Reagan's nomination at Republican convention. They were pretty effective at drowning out everything for 10 minutes or more.

  11. Latency by Anonymous Coward · · Score: 0

    44 second latency? Isn't that problematic?

  12. Chaffing and Winnowing by Anonymous Coward · · Score: 0

    I'll just leave this here: https://en.wikipedia.org/wiki/Chaffing_and_winnowing

  13. Vuvuzela by Megahard · · Score: 2

    So they're just tooting their own horn.

    --
    I eat only the real part of complex carbohydrates.
  14. DoS attack by neghvar1 · · Score: 1

    If this is designed to flood a network with junk data to conceal the relevant data, could this be interpreted as a form of a denial of service attack if it decreases network performance?

  15. Speak softly and carry a big stick. by leftover · · Score: 2

    I see this as the proverbial "big stick" to push back against the conglomeration of TLAs and communication oligarchies.
    "You don't want strong encryption? Then we will do this!"

    --
    Bent, folded, spindled, and mutilated.
  16. steganography by NostalgiaForInfinity · · Score: 1

    Generating random message traffic to thwart message analysis and hide true communications is an old trick. It's really a form of steganography, just not a very efficient one. By participating in one of these networks, you draw suspicion.

    People who really want to communicate clandestinely probably just use public forums and image sharing sites as digital dead drops for steganographically hidden messages. There are many steganograhic systems for a medium of your choice, many of them even auditable and open source.

  17. Alternate solution. by fahrbot-bot · · Score: 4, Insightful

    Just get Netflix, Amazon, Hulu, etc... to stand up Tor exit nodes. Chum the pipeline with things like Gigli and The Last Airbender and let the NSA filter through all that. Maybe they'll just kill themselves - I know I would.

    --
    It must have been something you assimilated. . . .
    1. Re:Alternate solution. by Bing+Tsher+E · · Score: 1

      Netflix, Amazon, and Hulu are owned and controlled by The Man.

      Though Bezos does seem more like an OTO initiate than a mainstream fucker.

    2. Re:Alternate solution. by Anonymous Coward · · Score: 0

      It's pretty easy to distinguish Netflix traffic from other message traffic.

    3. Re:Alternate solution. by Anonymous Coward · · Score: 0

      This does NOT work. There are still periods where some parts of the network and links and paths are idle or otherwise not full of traffic. It is those gaps that allow passive adversaries to perform timing and correlation attacks. The ONLY way to defend against them is to use fulltime fill traffic within every part of the overlay network.

    4. Re:Alternate solution. by Anonymous Coward · · Score: 0

      Right, because streaming traffic is impossible to filter and sort out, and they'd never be able to figure out what is what with the most simple automated analysis.

  18. Wasted bandwidth by Anonymous Coward · · Score: 0

    Why not just encode data in normal bittorent transfers?
    Normal clients would just ignore unknow data.

    1. Re:Wasted bandwidth by pepsikid · · Score: 1

      I agree. It would be better to disguise your data as normal traffic!

      Bittorrent might be an ideal choice, since we've seen evidence that the sp00ks discard that traffic wholesale. You'd set up a legit bittorrent repository with a few thousand popular files, on a server which publicly appears to enforce a strict up/download ratio, which would help explain why so many clients stayed connected for long times downloading small chunks. Your own client would essentially join a cloud of encrypted proxies and contribute relay services.

      Other good choices would be disguising traffic as https browsing blogs, forums and decentralized social networks. Your obfuscation server would be like a plugin to these kinds of legitimate public servers. It would look just like people were just catching up on news and posts. The higher the traffic the site has, the better. Occasionally, we might see major websites get hacked to include the obfuscation feature for a few days here and there. Sp00ks will have to log all https traffic to and from cnn, yahoo, google, microsoft, lolz!

      Since sp00ks count bytes to determine what page you're looking at, even when using https, the obfuscation server could pad the packets to simulate a walk through various actual threads or web pages it hosts.

  19. Hasn't been done for a reason, but it's a good try by Anonymous Coward · · Score: 0

    This idea of using padding to stymie correlation and confirmation attacks has been discussed a few times in the Tor mailing lists. It's even in the Tor Project's FAQ: https://www.torproject.org/docs/faq#SendPadding.

    The main reasons it hasn't been attempted are:

    - Requires a lot of bandwidth;
    - Some users and relay operators wouldn't be able to operate relays and use Tor because of all the bandwidth consumption;
    - Doesn't impede all kinds of correlation and confirmation attack attempts, and may open up more ways of attack; so all the overhead may be pointless some significant portion of the time;
    - Latency is absurd, would make Tor nearly unusable;
    - Would require significant re-engineering of the protocol at this point;

  20. Really new ?!? by ctrl-alt-canc · · Score: 4, Funny

    > pollutes the network with dummy data
    probably not so different from internet as we know it, isn't it ?!?

    1. Re:Really new ?!? by Big+Hairy+Ian · · Score: 1

      Sounds like a modern day political debate to me (Congress/Senate/Houses of Parliament)

      --

      Build a Man a Fire, and He'll Be Warm for a Day. Set a Man on Fire, and He'll Be Warm for the Rest of His Life.

  21. Is TOR compromised? Do we need a new chat system? by Anonymous Coward · · Score: 0

    Right, I'm not very knowledgeable about encryption, so please bear with me. Here's some thoughts.

    Some US agents recently pressured a library to shut down their TOR node, and they did.

    That raises some questions: firstly - was this a one-off random event where they just felt like it this one time, or was it part of a systematic plan?

    Let's presume there was a systematic plan behind it. That should mean that they systematically pressure the shutdown of TOR nodes. So: How many times have they succeeded, and why have we not heard anything about it earlier? Correlate that with the miniscule cost for a government of running even 1000 TOR nodes, and it's quite possible that far more than 50% is compromised. Doesn't TOR presume that someone isn't controlling all the entry and exit points?

    So alternate suggestion: it seems to me that the biggest barrier for running TOR is the bandwidth. We even have some people torrenting through TOR. The main parties likely to run a TOR node will be institutions and those who can smuggle a server into their employer - and these targets are those most susceptible to pressure. So how about an anonymous chat network?

    Metadata is another issue - if A is kept under surveillance, and his ISP detects a connection to B, then it doesn't matter that the connection is encrypted. Once B is identified as the recipient of encrypted communications then B could be attacked through many other ways.

    So how about a chat network that autonomously connects to a number of other clients, and mimics human behavior? Maybe a central database of client signatures maintained by a known privacy advocate which it downloads, and then connects randomly to each of these, transferring gibberish? It could then intermix meaningful messages to named clients with the gibberish spam, and the recipients could name which signatures it should actually save messages from. Sometimes transferring messages through random third parties as well. So A's client sometimes connects to B directly, and for periods of time randomly picks F and sends messages to F containing another message with orders to forward to B.

  22. It's "whom" by stevegee58 · · Score: 1

    Who's talking to *whom*.

    1. Re:It's "whom" by cant_get_a_good_nick · · Score: 1

      I came here to post this.

      I also want to change that 70's song to "Whom do you love". Just sayin.

  23. done before by Anonymous Coward · · Score: 0

    This has been done before -- I'm surprised at the lack of a reference. MIT CSAIL has really gone downhill since the 80s.

    See: P5 : a protocol for scalable anonymous communication by Sherwood et al (2001)

  24. It was a good idea by Anonymous Coward · · Score: 0

    This kind of thing only works if you keep it a secret. If MIT has not already been served with a national security letter you can bet that one is on the way.

  25. Let me guess: Shortest path algorithm work by Anonymous Coward · · Score: 0

    See subject: Shortest path/route work - & it does work (you pick it up in discrete math usually in CS work or math majors, OR business degrees as well)... right (or wrong)?

    * It came in VERY handy for me while I worked for a major frozen food distributor in the mid to late 90's in Atlanta Georgia where it was used a LOT in routing trucks efficiently as possible.

    APK

    P.S.=> I'd almost be willing to BET you employed that kind of math... apk

    1. Re:Let me guess: Shortest path algorithm work by KGIII · · Score: 1

      That was in use as well. It really depends on what the traffic is being optimized for. Sometimes the shortest distance is not the quickest route nor is it always the most efficient route. There are other issues like throughput and capacity. We eventually expanded to do pedestrian traffic modeling which was quite different and meant a whole lot of new learning and research. It's akin to modeling chaos, we humans aren't entirely predictable.

      --
      "So long and thanks for all the fish."
  26. Re:Is TOR compromised? Do we need a new chat syste by Anonymous Coward · · Score: 0

    Some US agents recently pressured a library to shut down their TOR node, and they did.

    That raises some questions: firstly - was this a one-off random event where they just felt like it this one time, or was it part of a systematic plan?

    It wasn't. That were just some guys from the local police and the library put the TOR exit node up again.

    Let's presume there was a systematic plan behind it. That should mean that they systematically pressure the shutdown of TOR nodes.

    There always is and always was such pressure from law enforcement, for obvious reasons.

    Correlate that with the miniscule cost for a government of running even 1000 TOR nodes, and it's quite possible that far more than 50% is compromised. Doesn't TOR presume that someone isn't controlling all the entry and exit points?

    Possible but not that easy, because TOR nodes and TOR exit nodes are in many different countries. Some of them might cooperate, others certainly not. It seems like a better and easier plan to systematically compromise node endpoints themselves with trojans, viruses, or other special surveillance software.

    So how about a chat network that autonomously connects to a number of other clients, and mimics human behavior?

    I don't understand why you want to mimick human behavior, since the network needs to be encrypted anyway. It's better to connect all nodes in the network (or all neighbors, or random nodes, etc., depending on the network topology) by continuous low-bandwidth encrypted data streams sending and receiving at the same rate all the time. In this encrypted stream is random data interspersed with the messages.

    If I'm not mistaken, such a system was or is used by embassies of one or more nation states. I think I've read about that somewhere.

    There are some problems with this idea for ordinary "end consumers", though. Unless almost everyone would use this system, every node would be very suspicious and someone would invariably try to compromise the nodes with side-channel attacks. Moreover, just the location and owners of the nodes would probably be enough information to figure out who and why someone is using this system. And since PCs are totally insecure and easy to compromise, this network would probably only (politically) hard to compromise if millions of people would install and run the system. It's the classic chicken and egg thing that also prevents widespread email encryption.

    But it's still a nice project, and chat is a good application for experimenting with p2p networks.

    My 2 cents as AC. :-)

  27. The Name by eumoria · · Score: 2

    It's a perfect name for it, regardless if it works. Tells you exactly what it does... "WHAT??? WHAT?!?!?! FUCKING VUVUZELAS!!!" https://www.youtube.com/watch?...

  28. Yup, thought so... apk by Anonymous Coward · · Score: 0

    See subject: & I agree - sometimes, you hit 'traffic jams' (choke points) in REALITY that the math can't 'see' beforehand... "been there/done that" too.

    APK

    P.S.=> What amazes me, particularly in computing when it's applied, is the work of no doubt many decades (if not a lifetime) from the "math freaks" out there (or theoretical physics too) once the applied folks (engineers) begin experimenting with applying it - "WE ALL STAND ON THE SHOULDERS OF SOME SERIOUS GIANTS" imo @ least... apk

    1. Re:Yup, thought so... apk by KGIII · · Score: 1

      That we do... My Ph.D is in Applied Mathematics and I truly stood on the shoulders of giants. There were many, many brilliant people not just before me but, by grace of luck, around me. Traffic is a fickle thing, we humans aren't that bright. One of the reasons I am skeptical about the speed with which we'll get fully autonomous vehicles is because of my familiarity with traffic. There are many things that people do not consider, the biggest one of which is privacy.

      However, 'tis late and I've not slept much. I'm working on a project (a bet with a friend) so I've been busy coding a site and, probably, will work on that some more. Otherwise, it's me... I'd be happy to type a novella concerning traffic modeling but I've typed them all before and can think of nothing new to add. Not all traffic engineering is done with the goal of increasing efficiency or throughput. If you look into pedestrian traffic, specifically in areas such as retail environments, the goal is to direct, pace, and keep it orderly.

      Even with vehicular traffic, there's a lot of psychology that goes into it. There are so many elements, so many variables... It'd take, well, a life's work to describe it in detail. I did have, at one time, the absolute greatest traffic sim game on the planet (I'm biased) but it did lack much in the way of graphics. Well, it had graphics later but it sure didn't start that way. I can't even begin to imagine the compute cycles that we'd have needed in order to add graphics back then. By the late 1990s we had disk arrays that enabled us to work with data sets that were nearing the 1 TB mark. There's a whole lot of fun involved. ;-)

      --
      "So long and thanks for all the fish."
  29. source code by Anonymous Coward · · Score: 1

    Source code available here: https://github.com/davidlazar/...

    1. Re:source code by Anonymous Coward · · Score: 0

      Thank you.

  30. Entropy source by manu0601 · · Score: 1

    That system seems to require a lot of random data. What is the plan to gave good enough entropy sources so that it is not broken by being predictable?

  31. It does't matter .. this is why they collect it al by Anonymous Coward · · Score: 0

    Sure, this would confuse/use up resources on an inline monitoring device. So what. The NSA collects all of the data for offline processing. It can eventually be filtered.

    AC

  32. Nullsoft Waste by Anonymous Coward · · Score: 0

    Nullsoft's Waste (2003?) had a network saturate feature that did just that.