Tor insists its network is safe after German cops convict CSAM dark-web admin
- Reference: 1726727946
- News link: https://www.theregister.co.uk/2024/09/19/tor_police_germany/
- Source link:
A [1]report by German news magazine program Panorama and YouTube investigative journalism channel STRG_F claims that the German Federal Criminal Police Office (BKA) and the Public Prosecutor General's Office in Frankfurt am Main were able to identify at least one Tor user after carrying out network surveillance.
The report mentions “timing analysis” as the key to identifying Tor users. “Timing individual data packets, anonymised connections can be traced back to the Tor user, even though data connections in the Tor network are encrypted multiple times,” the report states – sadly without explanation of how the technique works.
[2]
Tor [3]offers enhanced anonymity for users of its network by routing their traffic through a so-called dark-web of nodes so that the true origin of a connection is obfuscated. Traffic sent to Tor is wrapped in layers of encryption and first reaches an “entry” or “guard” node. Traffic then bounces through at least three servers chosen at random – aka “relays" – before returning to public networks via an “exit node” or connecting to a [4].onion service . That process hides the source of a connection, and makes it harder to observe what a particular user is doing online just from their network traffic.
[5]
[6]
Observing long-term usage trends, as suggested by the “timing analysis” methodology, could perhaps erode Tor’s potency by giving observers clues about users who send traffic into the network. Essentially, for instance, someone could add nodes to the Tor network and note the timing of packets observed going in and packets seen coming out. After a while, these timings may help give away who is connecting to a particular .onion service.
Matthias Marx, a spokesperson for famed European hacker collective the Chaos Computer Club (CCC), lent credence to the method by telling the news outlets the available evidence – documents and other information sourced by the journos – "strongly suggest that law enforcement authorities have repeatedly and successfully carried out timing analysis attacks against selected Tor users for several years in order to deanonymize them.”
[7]
The Tor Project, while conceding it hasn't seen all the documents involved despite asking the reporters for them, believes German police were able to unmask a Tor user due to that person's use of outdated software as opposed to the plod exploiting some unknown vulnerability or similar.
The German report claims the timing analysis attack was used during investigations into an individual known as “Andres G”, the suspected operator of a .onion website called Boystown that hosted child sex abuse material (CSAM).
“G” allegedly used the anonymous messaging app Ricochet that passes data between senders and recipients over Tor. More specifically, it's said that he used a version of the chat program that failed to secure its Tor connections against the timing-based deanonymization methods used by the police.
[8]
The report says German authorities secured the cooperation of carrier Telefónica, which provided data on all O2 customers who connected to a known Tor node. Matching that info with observations of Tor timing info allowed authorities to identify “G”, who was arrested in North Rhine-Westphalia, charged, convicted, and jailed for years in 2022.
Tor has argued that method does not indicate its service is flawed.
The org has instead advanced a theory that by using the insecure Ricochet, “G” was caught by a [9]guard discovery attack . In short, that means the cops were to able to [10]figure out the entry or guard node he was using to send data over the Tor network. The police can ask Telefónica to list the subscribers who connected to that guard, and deduce the identity of the Tor user.
Tor [11]claims that "G" probably used an old version of Ricochet that did not include protections against such attacks. "This protection exists in Ricochet-Refresh, a maintained fork of the long-retired project Ricochet, since version 3.0.12 released in June of 2022," Tor’s write-up states.
[12]Microsoft Defender 'finally' stops flagging Tor Browser as malware
[13]Cutting kids off from the dark web – the solution can only ever be social
[14]Tor turns to proof-of-work puzzles to defend onion network from DDoS attacks
[15]Signal shoots down zero-day rumors, finds 'no evidence' of device takeover
"For timing analysis of traffic, you do need to compromise a guard node, since it's the first in the Tor circuit and can see the IP address of the user," Bill Budington, senior staff technologist at EFF, told The Register . If the guard cannot be directly compromised, network timings can be obtained to [16]complete the surveillance.
Tor users are concerned that the network could be overwhelmed with police-controlled nodes that would compromise anonymity. But the number of nodes required to do this would need to be huge. The Tor Project acknowledged that it has seen an uptick in exit nodes being deployed – over 2,000 of late – but claimed this isn't anything to worry about.
"The claim that the network is 'not healthy' is simply not true," Tor's PR director Pavel Zoneff told The Register .
"The Network Health team has implemented processes to identify possible large groups of relays that are suspected to be managed by single operators and bad actors, and not allow them to join the network. As a result, it has flagged numerous bad relays for removal, which then got banned by the Directory Authorities. Many of those likely posed no real threat to users," he said.
The project has also called for help in understanding exactly what the police did. "We need more details about this case," the team said. "In the absence of facts, it is hard for us to issue any official guidance or responsible disclosures to the Tor community, relay operators, and users."
For now the message is: "Don't panic." ®
Get our [17]Tech Resources
[1] https://www.ndr.de/fernsehen/sendungen/panorama/aktuell/Investigations-in-the-so-called-darknet-Law-enforcement-agencies-undermine-Tor-anonymisation,toreng100.html
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2Zuv2QkmPa-mykRPC3VU8sgAAAAw&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://support.torproject.org/about/
[4] https://community.torproject.org/onion-services/overview/
[5] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Zuv2QkmPa-mykRPC3VU8sgAAAAw&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[6] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33Zuv2QkmPa-mykRPC3VU8sgAAAAw&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[7] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44Zuv2QkmPa-mykRPC3VU8sgAAAAw&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[8] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33Zuv2QkmPa-mykRPC3VU8sgAAAAw&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[9] https://blog.torproject.org/announcing-vanguards-add-onion-services/
[10] https://spec.torproject.org/vanguards-spec/index.html?highlight=vanguards#:~:text=A%20guard%20discovery%20attack%20allows,relay%20of%20a%20Tor%20client.
[11] https://blog.torproject.org/tor-is-still-safe/
[12] https://www.theregister.com/2023/10/03/microsoft_defender_tor/
[13] https://www.theregister.com/2024/02/16/dark_web_kids_limit_uk/
[14] https://www.theregister.com/2023/08/26/tor_tweaks_onion_routing_software/
[15] https://www.theregister.com/2023/10/16/signal_zeroday_flaw/
[16] https://spec.torproject.org/proposals/344-protocol-info-leaks.txt
[17] https://whitepapers.theregister.com/
It sounds like the authorities already have suspects, and a known dodgy server. So assume they can simultaneously monitor accurate data rate/timing to/from the suspect, and to/from the server.
Isn't there an unavoidable side-channel attack? Simply compare the two graphs over time. Obviously if the server is very busy, its graph will be smoothed.
But presumably there are quiet server periods. And during those periods, the suspect's graph will tend to show a match.
What am I missing?
Anonymity.....
There are additional ways to increase the likelihood of preserving anonymity...not mentioned in the article. .....although, of course, TOR provides a robust starting point.
(1) Use a burner. So the end point has no personal identity attached.
(2) Communicate only from internet cafes or the like. So the originating IP address has the "wrong" owner.
(3) Never communicate from a location (home, school, office) which can be linked to a limited group of actual people.
(4) Never use OTHER transactions at the same time as anonymous transactions. (E.g. a credit card transaction in the internet cafe in item #2)
(5) Be aware of CCTV in places where anonymous transactions are conducted.
.....and so on......
Perhaps the German plod were tracking their target using some or all of items #1 though #5.............
......and the mention of TOR is simple misdirection? Just a thought!!!
Seems like back in 2022 when it happened, that guy WAS using the up to date version of Ricochet. So while this bug has been fixed, who knows what other bugs still may exist.
However, I think had he simply used a trustworthy VPN (like Mullvad or IVPN) before connecting to Tor, this might have given him one more layer of protection.
Using a VPN would allow the police to track all his encrypted traffic back from the VPN provider to his home, based on tunnel ID etc, thus rendering Tor useless.
"The Tor project has insisted its privacy-preserving powers remain potent"
I would hope that is true, but given that the entire project is based on the work of a US Government agency and that there is no reason to not believe that the CIA (or [1]other agencies ) is actively involved in it, I somehow doubt that that is entirely true.
[1] https://www.ndr.de/fernsehen/sendungen/panorama/aktuell/Investigations-in-the-so-called-darknet-Law-enforcement-agencies-undermine-Tor-anonymisation,toreng100.html