On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design

Jon McLachlan; Nicholas Hopper

doi:10.1145/1655188.1655193

On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design

Jon McLachlan, Nicholas Hopper

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

26 Scopus citations

Abstract

In Tor, a bridge is a client node that volunteers to help censored users access Tor by serving as an unlisted, first-hop relay. Since bridging is voluntary, the success of this circumvention mechanism depends critically on the willingness of clients to act as bridges. We identify three key architectural shortcomings of the bridge design: (1) bridges are easy to find; (2) a bridge always accepts connections when its operator is using Tor; and (3) traffic to and from clients connected to a bridge interferes with traffic to and from the bridge operator. These shortcomings lead to an attack that can expose the IP address of bridge operators visiting certain web sites over Tor. We also discuss mitigation mechanisms.

Original language	English (US)
Title of host publication	Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
Pages	31-40
Number of pages	10
DOIs	https://doi.org/10.1145/1655188.1655193
State	Published - 2009
Event	8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 - Chicago, IL, United States Duration: Nov 9 2009 → Nov 13 2009

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Other

Other	8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09
Country/Territory	United States
City	Chicago, IL
Period	11/9/09 → 11/13/09

Keywords

Anonymous communication
Blocking resistance

Access

10.1145/1655188.1655193

OpenUrl availability

Full text

Cite this

McLachlan, J., & Hopper, N. (2009). On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design. In Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 (pp. 31-40). (Proceedings of the ACM Conference on Computer and Communications Security). https://doi.org/10.1145/1655188.1655193

On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design. / McLachlan, Jon; Hopper, Nicholas.
Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. p. 31-40 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

McLachlan, J & Hopper, N 2009, On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design. in Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. Proceedings of the ACM Conference on Computer and Communications Security, pp. 31-40, 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09, Chicago, IL, United States, 11/9/09. https://doi.org/10.1145/1655188.1655193

McLachlan J, Hopper N. On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design. In Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. p. 31-40. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/1655188.1655193

McLachlan, Jon ; Hopper, Nicholas. / On the risks of serving whenever you surf : Vulnerabilities in Tor's blocking resistance design. Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09. 2009. pp. 31-40 (Proceedings of the ACM Conference on Computer and Communications Security).

@inproceedings{fcce4165379b47b7b788607e961a68a1,

title = "On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design",

abstract = "In Tor, a bridge is a client node that volunteers to help censored users access Tor by serving as an unlisted, first-hop relay. Since bridging is voluntary, the success of this circumvention mechanism depends critically on the willingness of clients to act as bridges. We identify three key architectural shortcomings of the bridge design: (1) bridges are easy to find; (2) a bridge always accepts connections when its operator is using Tor; and (3) traffic to and from clients connected to a bridge interferes with traffic to and from the bridge operator. These shortcomings lead to an attack that can expose the IP address of bridge operators visiting certain web sites over Tor. We also discuss mitigation mechanisms.",

keywords = "Anonymous communication, Blocking resistance",

author = "Jon McLachlan and Nicholas Hopper",

year = "2009",

doi = "10.1145/1655188.1655193",

language = "English (US)",

isbn = "9781605587837",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

pages = "31--40",

booktitle = "Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09",

note = "8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09 ; Conference date: 09-11-2009 Through 13-11-2009",

}

TY - GEN

T1 - On the risks of serving whenever you surf

T2 - 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09

AU - McLachlan, Jon

AU - Hopper, Nicholas

PY - 2009

Y1 - 2009

N2 - In Tor, a bridge is a client node that volunteers to help censored users access Tor by serving as an unlisted, first-hop relay. Since bridging is voluntary, the success of this circumvention mechanism depends critically on the willingness of clients to act as bridges. We identify three key architectural shortcomings of the bridge design: (1) bridges are easy to find; (2) a bridge always accepts connections when its operator is using Tor; and (3) traffic to and from clients connected to a bridge interferes with traffic to and from the bridge operator. These shortcomings lead to an attack that can expose the IP address of bridge operators visiting certain web sites over Tor. We also discuss mitigation mechanisms.

AB - In Tor, a bridge is a client node that volunteers to help censored users access Tor by serving as an unlisted, first-hop relay. Since bridging is voluntary, the success of this circumvention mechanism depends critically on the willingness of clients to act as bridges. We identify three key architectural shortcomings of the bridge design: (1) bridges are easy to find; (2) a bridge always accepts connections when its operator is using Tor; and (3) traffic to and from clients connected to a bridge interferes with traffic to and from the bridge operator. These shortcomings lead to an attack that can expose the IP address of bridge operators visiting certain web sites over Tor. We also discuss mitigation mechanisms.

KW - Anonymous communication

KW - Blocking resistance

UR - http://www.scopus.com/inward/record.url?scp=74049112593&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=74049112593&partnerID=8YFLogxK

U2 - 10.1145/1655188.1655193

DO - 10.1145/1655188.1655193

M3 - Conference contribution

AN - SCOPUS:74049112593

SN - 9781605587837

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 31

EP - 40

BT - Proceedings of the 8th ACM Workshop on Privacy in the Electronic Society, WPES '09, Co-located with the 16th ACM Computer and Communications Security Conference, CCS'09

Y2 - 9 November 2009 through 13 November 2009

ER -

On the risks of serving whenever you surf: Vulnerabilities in Tor's blocking resistance design

Abstract

Publication series

Other

Keywords

Access

OpenUrl availability

Other files and links

Fingerprint

Cite this