Tor Network Adopts Galois Onion Encryption To Strengthen User Protection

Key Points:

• The Tor Project is transitioning from its legacy relay encryption system (tor1) to a new design called Counter Galois Onion (CGO) to enhance user anonymity and address vulnerabilities in the previous encryption method.
• The old tor1 system was susceptible to tagging attacks due to its malleable encryption and lack of hop-by-hop authentication, allowing attackers to alter ciphertext and potentially trace user traffic. This could lead to significant privacy breaches.
• Organizations using Tor should prepare for the transition to CGO, which offers improved security features such as forward secrecy and enhanced integrity checks. Users will benefit from these upgrades automatically once deployed.

Technical Details: The tor1 encryption relied on AES-128-CTR and SHA-1 for data integrity, which has been found vulnerable to manipulation. CGO introduces a Rugged Pseudorandom Permutation (RPRP) that enhances security through improved key management and tamper resistance.

MITRE ATT&CK Techniques: None mentioned

IOCs Mentioned: None mentioned