Counter Galois Onion: Improved encryption for Tor circuit traffic

(blog.torproject.org)

73 points by wrayjustin7 days ago

4 comments

  • 472828477 days ago
    Cool! Congrats! Awesome work.<p>Small typo: “observing predicatable changes“
    • sevg1 hour ago
      I think you’re getting downvoted because you’re reporting the typo in an odd and likely unproductive place.<p>I’m not sure what you expect HN readers to do about the typo. There is a comment section on the blog itself :)
  • blocchainz6 days ago
    [dead]
  • m00dy4 hours ago
    hey guys, anyone believes Tor still can provide anonymity to users ? just trying to ask politely.
    • dannyobrien3 hours ago
      broadly yes, but the real question is: what&#x27;s your threat model? <a href="https:&#x2F;&#x2F;ssd.eff.org&#x2F;glossary&#x2F;threat-model" rel="nofollow">https:&#x2F;&#x2F;ssd.eff.org&#x2F;glossary&#x2F;threat-model</a>
      • m00dy40 minutes ago
        I mean definitely state level actor, for example, let&#x27;s say you can access all data centers in EU as most tor nodes are located in EU.
    • ongy54 minutes ago
      Low stakes (IP violations etc.): absolutely<p>High stakes (military &#x2F; nation state scale): no
    • jstanley1 hour ago
      This FUD comes up whenever Tor is mentioned on Hacker News. The answer is: let&#x27;s say you think Tor isn&#x27;t 100% flawless. What are you going to do? <i>Not</i> use Tor? It&#x27;s better than any other option.
      • impossiblefork30 minutes ago
        What you&#x27;d do is that you&#x27;d write a distributed remailer where fixed-size messages are sent on fixed timeslots, possibly with some noise in when it&#x27;s transmitted, with a message always being sent on its timeslot, even if a dummy message must be sent.<p>I&#x27;ve been writing a system like this in Erlang, intended to be short enough that you can take a picture of the source code and then type it in by hand in a reasonable amount of time, as a sort of protest against Chat Control. I&#x27;m not sure I&#x27;m going to release it-- after all, they haven&#x27;t passed it yet, and there are all sorts of problems that this thing could needlessly accelerate, but I&#x27;ve started fiddling with it more intensively recently.
        • zmgsabst26 minutes ago
          Don’t things like Freenet do similar?<p>Except that every user is also a node, thereby mixing their personal traffic into a share of network traffic. Or so I understand it.
          • impossiblefork18 minutes ago
            I&#x27;m not sure. Freenet actually stores information, this is pure communication system. I don&#x27;t think it uses dummy messages.<p>My target size is also &lt;500 lines, and I think &lt;200 is feasible, whereas Freenet is apparently 192,000 lines.
    • lurker_jMckQT993 hours ago
      hey, would you mind elaborating (with sources)?
  • greekrich925 hours ago
    Is it quantum-proof?
    • vscode-rest5 hours ago
      Quantum isn’t the problem. Majority-internet telemetry is.
    • ekjhgkejhgk1 hour ago
      Is it alien-proof?