git.ipfire.org Git - thirdparty/tor.git/commit

author	Mike Perry <mikeperry-git@fscked.org>
	Fri, 4 May 2012 03:15:34 +0000 (20:15 -0700)
committer	Mike Perry <mikeperry-git@fscked.org>
	Thu, 14 Jun 2012 20:19:56 +0000 (13:19 -0700)
commit	8d59690033b1cc2b462b2b9ed61ddeaebb6f9ab0
tree	f7556253569fdf6f9d3ac817deb20743cf5b4f14	tree \| snapshot
parent	75706527c16fc62ec7db4e496db76e21c79c664a	commit \| diff

Defend against entry node path bias attacks

The defense counts the circuit failure rate for each guard for the past N
circuits. Failure is defined as the ability to complete a first hop, but not
finish completing the circuit all the way to the exit.

If the failure rate exceeds a certain amount, a notice is emitted.

If it exceeds a greater amount, a warn is emitted and the guard is disabled.

These values are governed by consensus parameters which we intend to tune as
we perform experiments and statistical simulations.

doc/tor.1.txt		diff \| blob \| blame \| history
src/or/circuitbuild.c		diff \| blob \| blame \| history
src/or/config.c		diff \| blob \| blame \| history
src/or/or.h		diff \| blob \| blame \| history