Black Hat presentation on TOR suddenly cancelled

The presentation revolved around de-anonymizing users of the privacy tool

A presentation on a low-budget method to unmask users of a popular online privacy tool, TOR, will no longer go ahead at the Black Hat security conference early next month.

The talk was nixed by the legal counsel with Carnegie Mellon's Software Engineering Institute after a finding that materials from researcher Alexander Volynkin were not approved for public release, according to a notice on the conference's website.

It's rare but not unprecedented for Black Hat presentations to be cancelled. It was not clear why lawyers felt Volynkin's presentation should not proceed.

Volynkin, a research scientist with the university's Computer Emergency Response Team (CERT) was due to give a talk entitled "You Don't Have to be the NSA to Break Tor: Deanonymizing Users on a Budget" at the conference, which take places Aug. 6-7 in Last Vegas.

TOR is short for The Onion Router, which is a network of distributed nodes that provide greater privacy by encrypting a person's browsing traffic and routing that traffic through random proxy servers. Although originally developed by the U.S. Naval Research Laboratory, it is now maintained by The TOR Project.

TOR is widely used by both cybercriminals and those with legitimate interests in preserving their anonymity, such as dissidents and journalists. Although TOR masks a computer's true IP address, advanced attacks have been developed that undermine its effectiveness.

Some of Volynkin's materials were informally shared with The TOR Project, a nonprofit group that oversees the TOR, wrote Roger Dingledine, a co-founder of the organization, in mailing list post on Monday.

The TOR Project did not request the talk to be canceled, Dingledine wrote. Also, the group has not received slides or descriptions of Volynkin's talk that go beyond an abstract that has now been deleted from Black Hat's website.

Dingledine wrote that The TOR Project is working with CERT to do a coordinated disclosure around Volynkin's findings, possibly later this week. In general, the group encourages researchers to responsibly disclose information about new attacks.

"Researchers who have told us about bugs in the past have found us pretty helpful in fixing issues and generally positive to work with," Dingledine wrote.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Carnegie Mellon UniversityThe TOR Project

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Jeremy Kirk

IDG News Service
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Cate Bacon

Aruba Instant On AP11D

The strength of the Aruba Instant On AP11D is that the design and feature set support the modern, flexible, and mobile way of working.

Dr Prabigya Shiwakoti

Aruba Instant On AP11D

Aruba backs the AP11D up with a two-year warranty and 24/7 phone support.

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Featured Content

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?