skip to main content
US FlagAn official website of the United States government
dot gov icon
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
https lock icon
Secure .gov websites use HTTPS
A lock ( lock ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Explore Research Products in the PAR
It may take a few hours for recently added research products to appear in PAR search results.


Title: Bypassing Tor Exit Blocking with Exit Bridge Onion Services
Tor exit blocking, in which websites disallow clients arriving from Tor, is a growing and potentially existential threat to the anonymity network. This paper introduces HebTor, a new and robust architecture for exit bridges—short-lived proxies that serve as alternative egress points for Tor. A key insight of HebTor is that exit bridges can operate as Tor onion services, allowing any device that can create outbound TCP connections to serve as an exit bridge, regardless of the presence of NATs and/or firewalls. HebTor employs a micro-payment system that compensates exit bridge operators for their services, and a privacy-preserving reputation scheme that prevents freeloading. We show that HebTor effectively thwarts server-side blocking of Tor, and we describe the security, privacy, and legal implications of our design.  more » « less
Award ID(s):
1704189 1718498
PAR ID:
10299563
Author(s) / Creator(s):
; ;
Date Published:
Journal Name:
2020 ACM Conference on Computer and Communications Security
Page Range / eLocation ID:
3 to 16
Format(s):
Medium: X
Sponsoring Org:
National Science Foundation
More Like this
  1. ; ; ; ; (, 50th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2020))
    This paper examines an existential threat to Tor— the increasing frequency at which websites apply discriminatory behavior to users who arrive via the anonymity network. Our main contribution is the introduction of Tor exit bridges. Exit bridges, constructed as short-lived virtual machines on cloud service providers, serve as alternative egress points for Tor and are designed to bypass server-side censorship. Due to the proliferation of managed cloud-based desktop services (e.g., Amazon Workspaces), there is already a surprisingly large fraction of web requests that originate in the cloud. Trivially disrupting exit bridges by blocking requests from the cloud would thus lead to significant collateral damage. Our experiments demonstrate that exit bridges effectively circumvent server-side blocking of Tor with low overhead. Ad- ditionally, we perform a cost-analysis of exit bridges and show that even a large-scale deployment can be done at low cost. 
    more » « less
  2. ; ; ; ; ; (, 2019 Geo Congress, ASCE)
    To accurately describe the dynamic characteristics of bridges, it is important in some instances to take into consideration the flexibility and damping of the soil-foundation system. The ability to evaluate those properties in the field can serve as both a check for the design assumptions, and as assistance in the design of bridges with similar superstructure/substructure loading and soil conditions in the future. The goal of the presented study is to demonstrate the use of large-amplitude shaking as an effective tool in measuring actual response/behavior of bridges, and developing better understanding of the dynamic response of bridge systems. For that purpose, a large-amplitude shaking of a bridge in Hamilton Township, New Jersey, was carried out. The T-Rex, a mobile shaker from the Natural Hazards Engineering Research Infrastructure (NHERI) experimental facility at the University of Texas, Austin was employed to shake the bridge. A large number of sensors, geophones and accelerometers, were installed at various locations on the bridge deck, pier cap, and on the adjacent ground to capture the dynamic response of the bridge system. Furthermore, the results from field testing were used to calibrate a 3D finite element model of the bridge. The model was used to conduct a comparative analysis of the bridge response for the assumption of the bridge with fixed foundation conditions, and the bridge with the consideration of dynamic soil-structure interaction (DSSI) effects. The comparison with the field testing results demonstrate that the fixed foundation assumption model does not fully capture the behavior of the bridge, as opposed to the model with DSSI considerations. 
    more » « less
  3. ; (, Proceedings of the Human Factors and Ergonomics Society Annual Meeting)
    Conditionally automated vehicles require the out-of-the-loop driver to intervene when the system is unable to handle forthcoming situations, such as freeway exiting. The takeover request (ToR) for exiting a freeway can be scheduled in advance. Upon a ToR, the driver needs to gain situation awareness (SA) and resume manual control. This study examined how the ToR lead time affects driver SA for resuming control and when to send the ToR is most appropriate for freeway exiting. A web-based, supervised experiment was conducted with 31 participants. Each participant experienced 12 levels of ToR lead time (6, 8, 10, 12, 14, 16, 18, 20, 25, 30, 45, and 60 s). The results showed positive effects of longer ToR lead times (16–60 s) on driver SA for resuming control to exit from freeways in comparison to shorter ToR lead times (6–14 s), and the effects level off at 16–30 s. 
    more » « less
  4. ; (, Proceedings on Privacy Enhancing Technologies)
    Abstract Nested symmetric encryption is a well-known technique for low-latency communication privacy. But just what problem does this technique aim to solve? In answer, we provide a provable-security treatment for onion authenticated-encryption (onion-AE). Extending the conventional notion for authenticated-encryption, we demand indistinguishability from random bits and time-of-exit authenticity verification. We show that the encryption technique presently used in Tor does not satisfy our definition of onion-AE security, but that a construction by Mathewson (2012), based on a strong, tweakable, wideblock PRP, does do the job. We go on to discuss three extensions of onion-AE, giving definitions to handle inbound flows, immediate detection of authenticity errors, and corrupt ORs. 
    more » « less
  5. ; ; (, Assessment in Education: Principles, Policy & Practice)
    This study investigates the use of exit tickets as formative assessments in maths-integrated computer science (CS) lessons for grade 5 students. Exit tickets are brief surveys administered immediately after instructional activities. Using structural equation modelling (SEM), we analysed data from 1,067 students to examine the reliability and validity of exit tickets in predicting summative pre/post survey results. The study found that the exit ticket responses consistently assessed student affect at two administration points, meeting strict measurement invariance criteria (χ2(21) = 1.34, p = 1.00). Confirmatory factor analysis revealed that exit tickets predicted student self-efficacy and interest in CS, which are key educational outcomes. These findings suggest that exit tickets can be valuable tools for enhancing instructional practices and supporting student learning and engagement in CS education. The study concludes with recommendations for effectively implementing exit tickets in educational settings. 
    more » « less
  • Citation Formats
  • MLA
  • APA
  • Chicago
  • BibTeX
  • Save / Share this Record
  • Send to Email