2011
Security / Re: Tor network compromised - cogent isp (dea, cia, nsa)
« on: February 18, 2013, 03:05 pm »I'm with kmfkewm on this, quite frankly. They have virtually unlimited resources
No, they don't. They have distinctly limited resources, in terms of money, manpower, intellectual capital, and internal and external political will.
An "infinitely" resourceful state adversary would have taken down SR by now. SR is still up because such an adversary doesn't exist.
The NSA is literally housed in a black box:
https://en.wikipedia.org/wiki/File:National_Security_Agency_headquarters,_Fort_Meade,_Maryland.jpg
Much of their operations are secret. It is the nature of human psychology that in the absence of evidence, wild speculations fly (you need only look at the explanations for weather phenomena in any pre-scientific society). That's basically what that blog post is about.
I submit that if we knew about their internal operations, they would be a lot more mundane than most people assume.
Also, all the resources in the world can't beat logic. While it's possible to compromise the Tor network, it is extremely difficult to do so in a way that won't get you noticed. You can spin up 10,000 exit nodes, but you can't do it without getting noticed. Take a look at the Trotsky section of this page:
https://trac.torproject.org/projects/tor/wiki/doc/badRelays
"Between 17-23:00 (UTC) 226 exiting relays, all with largely identical nicknames ("trotsky*") and exit policies were added to the tor network. No family or contact information was set, and the IPs came from several countries (mostly eastern European) making it look like a potential botnet. They disappeared roughly a week later.
On 10/2/10 between 21-20:00 (UTC) another 383 exit relays were added, this time more gradually. Others have periodically appeared outside these windows. These relays appear to be on residential connections, most having very poor connectivity (rransom reports that some are dialup)."
There is zero evidence that Cogent is a front for American law enforcement or intelligence agencies, and there aren't even that many relays on Cogent autonomous systems. Frankly, I'd be more concerned about Torservers.