• Home

  • Technology

  • Tor: How it works to keep you safe online. PhutureCon 2014
15
Phuturecon 2014 How it works to keep you safe online IceQUICK ParkBenchIndustries.com

Tor: How it works to keep you safe online. PhutureCon 2014

Embed Size (px)

DESCRIPTION

Presented at the first PhutureCon (2014) (http://phuturecon.com) in Denver, CO.

Citation preview

Page 1: Tor: How it works to keep you safe online. PhutureCon 2014

Phuturecon 2014

How it works to keep you safe online

IceQUICK

ParkBenchIndustries.com

Page 2: Tor: How it works to keep you safe online. PhutureCon 2014

Who am I Former USAF NOC admin (Active Duty and

Contractor) Windows/Solaris/Linux admin IT process architect (ITIL) Not a developer (Tor is written in C) Tor Experience

User for 10+ years Relay node admin for ~3 years

Page 3: Tor: How it works to keep you safe online. PhutureCon 2014

This presentation Combined from a variety of sourcesNo tricks, vulnerabilities, hacksNot ‘breaking news’Why I trust the networkWhy you should contribute

Page 4: Tor: How it works to keep you safe online. PhutureCon 2014

What is Tor?

Network of virtual tunnels Privately Browse Internet FREE! Used by…

Journalists Activists Censorship circumventing

citizens Military intel analysts Law enforcement Whistleblowers Bloggers Privacy-contious

http://www.torproject.org/

Page 5: Tor: How it works to keep you safe online. PhutureCon 2014

Tor History ~1995 - Naval Research Lab as “Onion Routing” 2002 - Converted to TOR “The Onion Router”

Code open-sourced 2006 – Tor Project Formed

501(c)(3) research-educational non-profit Today: 60%+ of funding still from US Government

Page 6: Tor: How it works to keep you safe online. PhutureCon 2014
Page 7: Tor: How it works to keep you safe online. PhutureCon 2014
Page 8: Tor: How it works to keep you safe online. PhutureCon 2014
Page 9: Tor: How it works to keep you safe online. PhutureCon 2014

Technologies Used PKI

Public/Private Keys Hashing / Signing

Diffie-Hellman key exchange PFS – Perfect Forward Secrecy DHT – Distributed Hash Table

For hidden services /.onions

Page 10: Tor: How it works to keep you safe online. PhutureCon 2014

Life of a session Client to Node 1(Guard)

Perform DH Key Exchange Acquire PFS Session Key

Use Node 1(Guard) to repeat process to Node 2(Relay) Use Node 2(Relay) to repeat process to Node 3 (Exit) Use Node 3 to contact internet resource Create new path every 10 minutes

Will route existing TCP sessions through existing paths Repeat…

Page 11: Tor: How it works to keep you safe online. PhutureCon 2014

DH Key Exchange Key Exchange

Client gets the node’s public key from directory Client sends the first half of DH handshake encrypted with node’s

public key Node receives, decrypts it, using its private key Node has first half (client’s) of two-way DH handshake Node completes second half of the handshake, creating session

key Hashes the resulting session key and signs it with it private key Node sends to client – both parties now have the session key

Verify Session Key Client believes session key came from the router Client decrypts session key using router's public key Will only work if session key was signed with the router's private

key

Page 12: Tor: How it works to keep you safe online. PhutureCon 2014

Uses Web Browsing DNS Most services using TCP

Chat, Mail, etc. Hidden Services

E.g. http://j8hlg2sh2hoasdh8.onion/

Page 13: Tor: How it works to keep you safe online. PhutureCon 2014

What can you do? Run a Relay

Exit node or not Home cable modem VPS Tor Cloud – Amazon

Help Develop C, C++, Python, Java

OnionTip.com BTC to node operators

Defend its use

Page 14: Tor: How it works to keep you safe online. PhutureCon 2014

Questions?

Page 15: Tor: How it works to keep you safe online. PhutureCon 2014

Enjoy!@[email protected]@DC970


Medway’s Keep Safe Day Feedback

Medway’s Keep Safe Day Feedback

Documents
Keep it safe

Keep it safe

Documents
Rules and laws keep me safe

Rules and laws keep me safe

Education
Keep you and your car safe

Keep you and your car safe

Automotive
léÉê~íáåÖ=fåëíêìÅíáçåëtd.sirona.com/pdf/5906313.pdf · Keep documents safe, Online portal, Help Keep documents safe Always keep the Operating Instructions handy

léÉê~íáåÖ=fåëíêìÅíáçåëtd.sirona.com/pdf/5906313.pdf · Keep documents safe, Online portal, Help Keep documents safe Always keep the Operating Instructions handy

Documents
Keep Your Food Safe - Spanish

Keep Your Food Safe - Spanish

Food
Keep Your Food Safe- Bosnian

Keep Your Food Safe- Bosnian

Food
KEEP YOURSELF & YOUR BELONGINGS SAFE

KEEP YOURSELF & YOUR BELONGINGS SAFE

Documents
Keep everyone safe this Bonfire Night€¦ · Keep everyone safe this Bonfire Night If you’re letting off fireworks: let children enjoy them from a distance keep dogs and cats safe

Keep everyone safe this Bonfire Night€¦ · Keep everyone safe this Bonfire Night If you’re letting off fireworks: let children enjoy them from a distance keep dogs and cats safe

Documents
KEEP YOUR VAN SAFE. - Daken

KEEP YOUR VAN SAFE. - Daken

Documents
Keep Your Food Safe - Nepali

Keep Your Food Safe - Nepali

Food
BIRD HABITATS Birds build nests. Nests keep eggs safe. Nests keep birds safe. Nests provide shelter

BIRD HABITATS Birds build nests. Nests keep eggs safe. Nests keep birds safe. Nests provide shelter

Documents
Keep Your Pets Safe this Summer

Keep Your Pets Safe this Summer

Environment
How to keep women safe, online?

How to keep women safe, online?

Internet
Keep Your Food Safe - English

Keep Your Food Safe - English

Food
OpenSSH: keep your secrets safe

OpenSSH: keep your secrets safe

Software
Dragon Warrior 3 - Nintendo NES - Manual - gamesdatabase · Dragon Warrior Please keep this manual 'n a safe place tor future reference. PRECAUTIONS 1} high precision game Keep it

Dragon Warrior 3 - Nintendo NES - Manual - gamesdatabase · Dragon Warrior Please keep this manual 'n a safe place tor future reference. PRECAUTIONS 1} high precision game Keep it

Documents
Cryptography: Keeping Your Information Safe. Information Assurance/Information Systems –What do we do? Keep information Safe Keep computers Safe –What

Cryptography: Keeping Your Information Safe. Information Assurance/Information Systems –What do we do? Keep information Safe Keep computers Safe –What

Documents
People who keep us safe

People who keep us safe

Documents
Keep Your Food Safe - Kurdish

Keep Your Food Safe - Kurdish

Food
SCOPE Ditto’s Keep Safe

SCOPE Ditto’s Keep Safe

Documents
Keep Your Computers Safe And Secure

Keep Your Computers Safe And Secure

Business
Keep Fresh, Keep Clean, Keep Safe · Keep Fresh, Keep Clean, Keep Safe. Neighbours. Our local community . remains essential to us – it defines who we are as a destination, employer,

Keep Fresh, Keep Clean, Keep Safe · Keep Fresh, Keep Clean, Keep Safe. Neighbours. Our local community . remains essential to us – it defines who we are as a destination, employer,

Documents
SoftLayer Fundamentals Keep Safe Securi 1284312

SoftLayer Fundamentals Keep Safe Securi 1284312

Documents
Keep Dairy Safe

Keep Dairy Safe

Documents
Red Flags Keep Us Safe

Red Flags Keep Us Safe

Documents
Keep Your Food Safe - Somalian

Keep Your Food Safe - Somalian

Food
Storry Sharing Keep Safe

Storry Sharing Keep Safe

Documents
Keep Fresh, Keep Clean, Keep Safe - the Megaro · Keep Fresh, Keep Clean, Keep Safe. Partners. We recognise that we must. take full ownership of our internal procedures. To ensure

Keep Fresh, Keep Clean, Keep Safe - the Megaro · Keep Fresh, Keep Clean, Keep Safe. Partners. We recognise that we must. take full ownership of our internal procedures. To ensure

Documents
Keep Your SME Safe Online

Keep Your SME Safe Online

Documents