Opened 7 years ago

Last modified 2 years ago

#5992 new project

META: Decentralize directory authorities as far as safely possible

Reported by: phobos Owned by:
Priority: Medium Milestone: Tor: very long term
Component: Core Tor/Tor Version:
Severity: Normal Keywords: tor-dirauth
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor: SponsorZ

Description

We currently rely on a handful of directory authorities and their operators to generate and maintain the consensus of the Tor network. They're also the default place to go for clients to bootstrap into the network. Some research has been started into replacing the individual directory authorities with anonymity-preserving distributed hash table (DHT) models. Further this work, using simulators and/or private tor networks for handling future growth and expansion of the public tor network.

Child Tickets

TicketStatusOwnerSummaryComponent
#5464assignedarmaDecentralized measurement for network load balancingCore Tor/Torflow
#18346assignedSeparate the various roles that directory authorities play, from a configuration POVCore Tor/Tor
#18636assignedWrite sub-proposals for each part of prop257: Refactoring authorities. Implement as appropriate.Core Tor/Tor

Change History (12)

comment:1 Changed 7 years ago by karsten

Keywords: SponsorZ added
Milestone: Sponsor Z: November 1, 2013

Switching from using milestones to keywords for sponsor deliverables. See #6365 for details.

comment:2 Changed 7 years ago by mikeperry

Keywords: SponsorZ-large added; SponsorZ removed

See also #5464. This might be a pretty big effort for both research and implementation.

comment:3 Changed 7 years ago by nickm

Milestone: Tor: very long term

comment:4 Changed 7 years ago by nickm

Keywords: tor-auth added

comment:5 Changed 7 years ago by nickm

Component: Tor Directory AuthorityTor

comment:6 Changed 6 years ago by mikeperry

Another, simpler way to make the directory authorities safer is #7126. Full dirauth decentralization might actually create more security problems than it solves.

comment:7 Changed 3 years ago by cass

Severity: Normal

This ticket is tagged SponsorZ, but it looks like progress stalled four years ago. Is this still a thing that needs funding?

comment:8 Changed 3 years ago by nickm

I think this is superseded by proposal 257, described in tickets #18636 and #18346 . But those would be worth funding.

comment:9 Changed 2 years ago by nickm

Keywords: SponsorZ-large removed
Resolution: wontfix
Sponsor: SponsorZ
Status: newclosed
Summary: Replace individual directory authorities with a safe alternativeMETA: Decentralize directory authorities as far as safely possible

This is an entire PhD thesis's worth of work, but there are many pieces of this that could be done. Turning this into a parent ticket.

comment:10 Changed 2 years ago by nickm

Resolution: wontfix
Status: closedreopened

comment:11 Changed 2 years ago by nickm

Status: reopenednew

comment:12 Changed 2 years ago by dgoulet

Keywords: tor-dirauth added; tor-auth removed

Turns out that tor-auth is for directory authority so make it clearer with tor-dirauth

Note: See TracTickets for help on using tickets.