monotone-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Monotone-devel] Re: netsync transport encryption?

From: Ulf Ochsenfahrt
Subject: Re: [Monotone-devel] Re: netsync transport encryption?
Date: Wed, 25 Oct 2006 22:12:20 +0200
User-agent: Icedove 1.5.0.7 (X11/20061013) 
Zack Weinberg wrote:

Depends on your threat model.  If what you want to guard against is
revealing the content of the database to untrusted parties, then yes,
encryption gives no security if anonymous pulls of the entire database
are allowed.  If, however, you don't care about the database content
but you *do* want to conceal the identities of everyone who is
contributing, then you want to make anonymous pulls and keyed syncs
indistinguishable to traffic analysis, and encrypting anonymous
connections is necessary for that.  [To be truly robust to traffic
analysis you would have to do rather more work than just that, but
you're dead in the water if anonymous pulls are unencrypted.]  This is
just the one example I thought of in two minutes; I'm sure there are
others.

zw
Wouldn't you be able to solve that with a measure that aims directly at traffic analysis attacks? The Onion Router (TOR) comes to mind. 

-- Ulf

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]