Actively Probing Routes for Tor AS-Level Adversaries with RIPE Atlas - ICT Systems Security and Privacy Protection
Conference Papers Year : 2020

Actively Probing Routes for Tor AS-Level Adversaries with RIPE Atlas

Wilfried Mayer
  • Function : Author
  • PersonId : 1023828
Georg Merzdovnik
  • Function : Author
  • PersonId : 1022682
Edgar Weippl
  • Function : Author
  • PersonId : 1117623

Abstract

Tor provides anonymity to millions of users around the globe, which has made it a valuable target for malicious actors. As a low-latency anonymity system, it is vulnerable to traffic correlation attacks from strong passive adversaries, such as large autonomous systems. Estimations of the risk posed by such attackers as well as the evaluation of defense strategies are mostly based on simulations and data retrieved from BGP updates. However, this might only provide an incomplete view of the network and thereby influence the results of such analyses. It has already been acknowledged in previous studies that direct path measurements, e.g. with traceroute, could provide valuable information. But in the past, such measurements were thought to be impossible, because they require the placement of measurement nodes in the same ASes as the respective Tor network nodes. With the rise of new technologies and methodologies, this assumption needs to be re-evaluated.In this paper we present a novel methodology to utilize the RIPE Atlas framework, a network of more than 10,000 probes worldwide, to actively perform traceroute commands from and to Tor guard and exit relays to clients and destinations. Based on multiple global scans our results validate previous results and show the large influence on Tor posed by a limited set of ASes. These are in a strong position to carry out effective correlation attacks on Tor traffic. With this work, we provide an additional source of information that can be used together with BGP route information to increase the accuracy of future models and simulations of Tor and ultimately improve anonymity on the Internet.
Fichier principal
Vignette du fichier
497034_1_En_16_Chapter.pdf (931.97 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-03440850 , version 1 (22-11-2021)

Licence

Identifiers

Cite

Wilfried Mayer, Georg Merzdovnik, Edgar Weippl. Actively Probing Routes for Tor AS-Level Adversaries with RIPE Atlas. 35th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2020, Maribor, Slovenia. pp.234-247, ⟨10.1007/978-3-030-58201-2_16⟩. ⟨hal-03440850⟩
43 View
50 Download

Altmetric

Share

More