Academic Editor:Dipanwita Thakur, Banasthali University, Banasthali, Rajasthan, India
Checked for plagiarism: Yes
Is the Onion Router a Secure Network?
This paper attempts to answer the question of how government agencies use The Onion Router, or Tor, in conducting investigations. The essay observes that Tor is free open-source software that can be used by anyone who desires to communicate with others in a secure manner. In surveying the literature, it is found that Tor can be employed for both legal and illegal purposes. As the major financial contributor, Tor is used by government to secure its communications. Because Tor by bad actors, and because many of the Tor relays are operated by government agencies, Tor has been successfully employed in catching unsuspecting criminals. The conclusion of this exposition is that if one wants to communicate securely with someone else, and not be visible to government agencies, Tor should not be the vehicle of choice. There are alternative modes of communication that can thwart the risk of government surveillance.
The Onion Router, or Tor as it is more commonly known, is free software that supports anonymous communication on the Internet.1Tor guides Internet traffic through a global network that is both free and administered by volunteers.2It consists of over seven thousand relays that hide an individual’s whereabouts and usage from others that are attempting to analyze the flow of data on the Internet.3By employing Tor, it may be difficult, and sometimes impossible, to associate Internet activity with a particular person, including when one displays a specific website, posts a message online, sends an email message, etc.4Tor does not preclude an online service provider from figuring out when one is employing Tor to access the facility, and it does not disguise itself so that an Internet service provider does not know when a person is using Tor.5Some websites limit the ability of a user to use the full capability of a site.6
Onion routing is accomplished by creating by encrypting the data in the application layer of its communication protocol.7 When processing a packet using onion routing, it is as if the Internet communication protocol is peeling the layers of an onion.8 Tor not only encrypts the data but also the IP address of the next destination node.9This encryption is accomplished many times, where each relay or server in the Tor network decrypts the outermost layer so that it can send the remaining encrypted packet along to the next relay.10When a packet arrives at the relay just before the destination, the final encrypted layer is decoded, and the packet is sent to its destination.11The advantage of employing the onion methodology is that network surveillance cannot trace a packet backward to its source.12In the past, the National Security Agency (“NSA”) attempted to de-anonymize a user using its XKeyscore (“XKS”) system (codenamed “EgotisticalGiraffe”), where an email message, a telephone call, or web traffic can be monitored anywhere in the world without first obtaining a warrant.13A variety of organizations have funded Tor, but the majority of the monies originates from the United States federal government via the Office of Naval Research (“ONR”) and the Defense Advanced Research Projects Agency (“DARPA”).14
The purpose of this paper is to briefly review its history, describe how it works, discuss how it is currently employed, and then highlight its strengths and weaknesses in an attempt to answer how Tor is used by government agencies in conducting investigations. Tor seems to be a viable alternative to the Internet in its current form for individuals and organization, legal or otherwise, that desire to remain anonymous.15The advertised primary advantage of Tor is that personal anonymity is preserved while providing users with an efficient and effective alternative to the current state of Internet surveillance.16
This section reviews the historical literature of how Tor evolved into its current state. The literature seems to indicate that Tor has been billed as a secure network, where users can safely send and receive messages anonymously. However, the research demonstrates that Tor is anything but safe. Individuals that blithely employ Tor for legal or illegal purposes do so at their own risk. The section observes that there are some legitimate uses for Tor, but the fact that Tor is government funded and that the NSA and the GCHQ run many of the relays establishes the existence of a significant flaw its implementation.
The principle of onion routing was created by the United States Naval Research Laboratory (“USNRL”) on May 31, 1996, at the first Information Hiding Workshop held in Cambridge, UK.17Tor was invented Paul F. Syverson a mathematician, and by Michael G. Reed and David M. Goldschlag, both computer scientists.18The first generation of the open source code was made available in July 1996.19Although several proofs of concept models were developed, in 2002 the alpha version of Tor was produced by Syverson along with Roger Dingledine and Nick Mathewson, again both computer scientists.20The project was affectionately known as the Tor Project.21In 2004, the USNRL freely released the source code of Tor.22Also in 2004, the Electronic Frontier Foundation (“EFF”) started funding Dingledine and Mathewson to ensure the survival of the project. 23
In December 2006, Dingledine, Mathewson, and a host of others officially founded The Tor Project, a 501(c)(3) organization located in Massachusetts.24The project itself is a research-oriented nonprofit organization that not only supports Tor, but also develops additional functionality to further ensure user anonymity.25The EEF was the first sponsor of the Tor Project, but funding has also come from such organizations as the National Science Foundation (“NSF”), US Department of State Bureau of Democracy, Human Rights, and Labor (“DSBD”), DARPA through the University of Pennsylvania, Google, the SRI International, etc. (Sponsors, n.d.).26After 2006, the United States government has been the major funding source for Tor.27
In 2013, the NSA discovered how to penetrate the Tor network, unmasking its users.28The Washington Post published the notes of the meeting in 2007 between Dingledine and the NSA.29In these notes it was revealed that Dingledine not only described to the NSA how Tor worked, but also disclosed the categories of users that employ Tor or a regular basis.30In 2011, the Tor staff admitted that Tor was not as safe as it had been advertised.31Mike Perry, a Tor developer admitted that “extremely well funded adversaries that are able to observe large portions of the Internet can probably break aspects of Tor and may be able to deanonymize users.”32One year later, Syverson confirmed Perry’s assertion when he stated that Tor is insecure against an adversary that can analyze correlated traffic at different relays by exploiting traffic patterns, thereby subverting Tor security.33
Although Tor has been advertised as a secure network that preserves anonymity, the future of Tor is uncertain. If it becomes generally known that Tor is insecure, its usefulness diminishes rapidly. The question that the Tor Project must answer is what additional security measures can be effectively implemented in the future, particularly because Edward Snowden recently revealed that the NSA and the British Government Communications Headquarters (“GCHQ”) run a substantial number of Tor relays and desire to run even more relays.34
Tor permits its users to access the Internet as well as chat and send messages, just like many other Internet applications. However, has been used in the past for a variety of legal and illegal purposes, including gambling pornography, hacking, counterfeiting, whistleblowing, fraud, and selling illicit drugs.35The Economist has labeled Tor “a dark corner of the web” because of its relationship with Bitcoin and Silk Road.36Even so, Tor has been targeted by the NSA and the GCHQ, although these actions appear to be either software quality assurance efforts or a desire to track illegal Tor usage.37For example, GCHQ used a tool called Shadowcat to monitor encrypted access to virtual private servers (“VPS”) over secure shells (“SSH”) using Tor to capture illegal activity.38Other illegal uses of Tor include selling controlled drugs, weapons, stolen credit card numbers, money laundering, identity theft, and exchanging counterfeit currency.39
In the complaint regarding United States v. Ross William Ulbricht, the federal government admitted in court that Tor could be employed legitimately even though the document listed a plethora of illegal usages.40Even so, Tor is increasingly used by domestic violence victims and their social workers to communicate anonymously.41One legal advantage of using Tor is that it prevents stalking by private actors, but according to the information above, Tor in no way assures anonymity from government actors.42Nonetheless, Tor has been legally employed by The Guardian, The New Yorker, ProPublica, The Intercept_, etc.43
From a naïve technological perspective, Tor seems to be an impenetrable network. Onion routing is attained by encrypting data in the application layer, and then when processing a packet, a relay peels off one layer of the encryption, sending the packet onto the next relay until a packet reaches its destination.44The reality of the situation is something entirely different. Tor is freely available to anyone who wants to use it, the majority of the funding for Tor comes from the federal government, and the NSA and GCHQ operate many of the relays in the network.45However, for all of the assurances by the Tor Project that employing the software enables Internet communications to be secure, the fact is that many of the Tor relays are owned and operated by the federal government.46This fact begs the question of whether Tor is as secure as its advertising purports it to be. After all, Perry and Syverson have publically admitted that Tor is susceptible to surveillance when an adversary can monitor large portions of its network.47What better organization is there to scrutinize Internet traffic than the federal government with their virtually unlimited budget?48The answer is that the federal government is the best candidate to engage in extensive Internet surveillance.
A question that remains to be answered is: Why would the federal government fund Tor development in the first place? Two responses are readily apparent. First, federal agencies such as the NSA and its British counterpart the GCHQ need a secure network where they can communicate with individuals both in the field and at headquarters.49Almost as a corollary, Tor has value to the NSA and the GCHQ because it is advertised as providing secure communication, and private individuals who have something to hide are more than likely to use Tor for legal or illegal purposes.50In advertising that Tor is a secure network, it is as if there is a big red flashing neon arrow pointing at Tor attempting to discourage private individuals from using the network, while at the same time, individuals ignore the flashing indicator because the advertising is so enticing and hypnotic. These people forget or are unaware that the federal government developed Tor, and that the government is interested in its communications, but not necessarily the interactions of its citizenry.
It is well established that Tor is employed for legal and illegal purposes, such as selling controlled drugs, weapons, stolen credit card numbers, money laundering, identity theft, and exchanging counterfeit currency.51From a common sense perspective, the surveillance of illegal actives on the Tor network could be construed to be entrapment.52However, when dealing with entrapment, it is not an affirmative defense if an individual has a predisposition to commit a crime.53If a person is employing Tor for illegal purposes, then it is legally impossible to invoke entrapment as a defense because the person has the appropriate mental state or mens rea to commit the particular crimes. 54Thus, the secondary purpose of Tor can be stated in the vernacular to be to catch the bad guys.
One problem with Tor that can defeat secret government communications is when adversaries such as the China and Russia governments covertly own and operate Tor relays. Both countries are adamantly against private citizens operating Tor relays, sometimes prosecuting its citizens on charges of terrorism.55,56Even so, a more critical is issue occurs when foreign governments, whether or not the governments are American allies, use Tor relays to spy on U.S. government activities.57Given that this negative consequence can be effectively mitigated, Tor has many economic, legal, and political advantages and few disadvantages.
In conclusion, if this author were to suggest to a third party whether to use Tor, the recommendation would be negative. Although Tor seems to be a mechanism for secure communication, first looks are deceiving. The federal government has too much influence in the use and results of Tor for the simple reason that it is its primary funding source. The adage at play here is that the person who pays the piper calls the tune. The paper followed the money that funded The Tor Project and discovered that the major contributor was the federal government. The government is not necessarily interested in altruistically protecting the privacy of individuals. It pursues its interests. Thus, if the Tor Project puffing transfixes a person, one uses the network at one’s own risk. In the opinion of this author, it is just not worth the risk. There are alternative forms of communication that do not employ the Internet and are probably much safer, such as Federal Express. Why expose oneself to government surveillance when it is not necessary? It should always be remembered that not all that glitters is gold.