If a user selects a new entry and exit relay each time the Tor network is used, the attacker can correlate all traffic sent with a probability of (c/n) 2. Suppose the attacker controls, or can observe, C relays from a pool of N total relays. Mitigating this threat requires consideration of the Tor network topology. In this case, the research community is unaware of any practical, low-latency design that can reliably prevent the attacker from correlating volume and timing information on both ends. For example, suppose the attacker controls or watches the Tor relay a user chooses to enter the network, and also controls or watches the website visited. Current practical, low-latency, anonymity designs like Tor fail when the attacker can see both ends of the communication channel.
0 kommentar(er)
