On Sun, Jun 29, 2014 at 4:53 PM, Mark McCarron <[email protected]> wrote: > ... > We already know from the Snowden releases that the physical infrastructure > for this is in place. That it spans at least 33 nations covering all major > fiber links. Within the US, all traffic is copied verbatim at major > exchanges. In other nations, metadata can be shared to complete the picture.
this is just one part of a series of costs; how much raw DPI capacity (it is finite)? how much memory/storage for backtrace to some hours window? 30day window? how much engineering time (earth human hours) to implement the collection, classification, and analysis of all flows in daily time? in near-real-time (<60sec)? how is accuracy beyond doubt identified? how much does additional accuracy in shorter time cost? > We know that the physical infrastructure and regulatory frameworks are there, > thus that must be going somewhere and as its metadata, that implies traffic > analysis. > > So, its a patchwork model and the costs are spread across many nations and > information sharing to isolate sites is policy driven. you trivialize too much; over and under estimate. justify the costs you quantify in detail - what you throw around above betrays a lack of understanding of the constraints of collection at global scale. as i keep restating another way, no matter how many times you call it a cop out: if global traffic analysis against Tor is expensive, the ability to pwn every endpoint with rare exception so cared about, using Tor or not, is cheaper - your reasonable adversary will do that! ... more value for less money. (this is perhaps one of the more interesting details to emerge across the Snowden leaks - the technical constraints and evolution of the offensive platform (TAO) and the scale (SSO/GAO) of the technical processes (QUANTUM*/TURB*|TURM*) applied and where the most resources are applied year over year.) last but not least, please note that i am in Paris for the drinking chocolate. ;) -- tor-talk mailing list - [email protected] To unsubscribe or change other settings go to https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
