Prop344: Update and Categorize Vectors; Ground in Threat Model (!355) · Merge requests · The Tor Project / Core / Tor Specifications

Merged Mike Perry requested to merge mikeperry/torspec:prop344-ticket277 into main 2 weeks ago

Apr 01, 2025
- Prop344: Readability fixes from Alex's review · e65e55bc
  Mike Perry authored 1 week ago
  
  e65e55bc
Mar 27, 2025

Prop344: Update and Categorize Vectors; Ground in Threat Model · 3b746784

Mike Perry authored 3 weeks ago

I've re-grounded the entire proposal in Tor's OG Design Doc Threat Model
language, and provide a background of this threat model as part of the
introduction, to help new folks get up to speed and better conceptualize this
proposal.

The proposal has been updated to classify all vectors into the following three
categories:
  1. Internal Covert Channels
  2. Behavior Manipulation
  3. Augmented Observation

It now also proposes that Tor's threat model be expanded to explicitly cover
these categories. These categories (and their vectors) were either explicitly
excluded, or in an ambigous status before.

Additionally, the following vectors have been added:
  - Guard Trapper Attacks
  - Relay DoS/OOM

The following examples have been added to existing vectors
  - Path restriction problems
  - .exit notation
  - Exit Policy abuse by websites+exits
  - circuit dirtyness abuse by exits
  - Dropped cells types unique to onion services

3b746784

Prop344: Update and Categorize Vectors; Ground in Threat Model

Merge request reports

Activity