When guys like these become professors, they end up making a generation of youngsters who revolutionise the technology.

Could you also talk about garlic routing? Which is more vulnerable to leeks?

"No one really knows anything about what's going on at all." Great description of my life.

As someone currently going for their masters in cybersecurity. They have been a massive help in understanding comp sci and IT concepts. While my professors are great people and they mean the best its was easier for me to get a concept down with a 10-30min computerphile video than a 4 hour long lecture with no practical application. Just wanted to say thanks chaps you been a massive help.

I wish he was my teacher when I first took up computer science.

That preview picture tho. At first blink I was sure that was anything but an onion lol

Using Tor to access Facebook... Oh what irony...

Confidentiality is hiding the message, anonymity is hiding the sender.

Traffic Analysis (discussed from about 11:20 to 13:00) is one of the major reasons tor works best when a lot of people near you are also connecting to the network. The more people that are connected to the same node, the "noisier" it is on the harder it is to correlate the inputs and outputs. Of course, this resistance to analysis is at a cost: all of that extra traffic also has to be processed by the node at some point, making it slower, so it's a bit of a balancing act

The absolute best explanation of onion routing ever heard.

When someone else goes "TOR router" and you're there like "The Onion Router router?"

This is definitely my favorite guy on this channel.

I love that people are always trying to charge money for computer courses and that, whereas the best teachers on youtube do it for free. I have so much respect for Mike and Tom. Keep doing what you are a doing and set up a Patreon because the information you are teaching on this channel is amazing and I would gladly donate what I can to you guys.

I love Dr. Pound's in-depth explanations, and this channel, too.

4:06 Layer encryption. 6:02 Attack. 7:42 Onion routing. 8:08 Speed. 9:24 Eavesdropping. 10:28 Drawbacks. 13:03 Cells.

Been following for years and I love the content. Always so fascinating. One of the best channels on YT.

A key point left out: Network requests can often have blatant identifiers of who sent that request, and the specifics about what they're doing. It's not just always seemingly arbitrary requests that give no hint of who issued the request. Like when using any sort of system you have to user a user ID or password for. This means the final node on the routing path actually can figure out info about who originated the request, and possibly why, despite having the multiple levels of encryption and routing between themselves and the originator

Clearest description of Tor I've ever heard, obviously a teacher!

I enjoy listening to Dr. Pound's explanations. I can understand him. The subject is fascinating.

Great insight for a newcomer to the topic, thank you for taking the time to explain!

I love the Computerphile episodes that Mike pound is in!

few questions: 1- why not asymmetric encryption as opposed to symmetric? 2- could you make it harder to de-anomynise you if packets had a short, random delay before being sent to the next node? 3- could you make it harder to de-anomynise you if you added dummy data or dummy packets at the entry and/or exit points?

Discovering this channel with this nice topic : thanks a lot! Short question, Mike Pound evokes the weakness of finding timely correlations between entry and exit points. But, could some kind of controlled shuffling of the various requests do the trick ( a mixing with other requests)?

ogres have layers

Great vid, I really appreciate this content. Does anyone know how long a routing chain lasts? It seems pretty important that the paths you take don't remain constant. Would a new route be established with every request, browsing session, or change in server destination? Or is it more of a timed switch?

Uh I think you'll find that TOR actually stands for The Ogre Router, because ogres have layers, like cakes.

I knew nothing about Tor but I saw it was a Mike Pound video so I watched it, definitely glad I did and I feel like I learned something new and important from it :) Thanks a lot for the videos!

5:16 what an enthusiastic server

Can make a video by explaining how i2p works ?

I love these videos!

So I created a chain proxy a few years back I could easy implement encryption into the request but man that part about checking the hash at the end to determine where the packet should go is Genius !

Oh man these are my favorite. Thanks Dr. Pound!

this guy and the animations are amazing!!

The last minute of the video contains one of its most important points.

I often find great content videos on this channel ! Guys are technically very rich and great in explaining things easiest way possible - Top man !

I could listen to this guy explain stuff all day...

Why are the lines on Dr. Pound's illustration torn?! Like some sort of screen tearing. It seems to be with almost all the lines drawn. It's really tearing me apart...

I love your videos, they are very interesting. Can we make slow loris attacks anonymously using TOR ? If so, there is still potentially the problem of comparing signals tempo ?

When we're talking about digging into the 'tempo' of messages and de-anonymizing the data- what is the certainty that we're able to establish on those? Correct me if I'm wrong but there should be a significant amount of variation resulting from using a lot of nodes, and obviously, the more nodes we use, the more varied our output 'tempo' is going to be. So we have two variables there- the size of the message (which stays the same) and the time interval it takes for the message to arrive at the last link (point B in the video) which is varying depending on many external factors. Also, wouldn't the data be sent over different amount of nodes (and different nodes) every time, which would add to the ambiguity? Great video by the way, thanks for making those!

This man is my favorite on this channel I wish he was my personal teacher things would be much simpler.

Very interesting stuff... another extra reason for the idea that the more people use TOR, the safer it is. Then again, the most congested it might become. I imagine a potential solution for traffic shape analysis would be for client and end node to have constant input without spikes with complete saturation, filling blanks with garbage. But that would also make the whole thing kinda useless in terms of speed.. or extremely complicated to pull. :P And also extremely taxing for every node.

Interesting video! But I'd like to know how the key exchange works between tor nodes

Super interesting subject and well explained. Thank you.

i love when mike explains things

Great video but I am not sure about the last part. An Etherframe is 64-1518 bytes long, not 1512. 1512 would only include the data in the frame, and source mac and destination mac. The data encapulated by the fame is set to a default maximum transmission unit of 1500. This does not include the Preamble + Start Frame Delimiter ether type FCS or the inter frame gap. I am also not sure about the point that was made about how a router decides to forward a packet. The router would check the destination mac address to see if it is being sent to its self. Then the router would check the CRC hash at the tail of the L2PDU to see if there was corruption to the transmission of the packet first to determine if it is even going to process the frame. Then it would check the destination ip address and figure out it if will need to do a routing table lookup or if it is destined to the router its self. A new hash is created each time the ethernet frame is rewritten, which is each time it hits a layer 3 device that needs to route it. The hash must match each time a switch or router checks the CRC, if it does not pass it will drop the frame or packet. The tor protocol does encryption at Layer 6 of the OSI model and would not interfere with the passing of the CRC. As you said at 13:14 a router determines if a router needs to read a message or forward based on the hash. Incorrect because if the hash does not pass it will drop the packet. A router will determine whether or not to forward the packet based on its IP destination in the L3PDU, not the CRC hash. Does tor networking handle routing differently where something would need to be done in the application layer?

Great video!

Best computerphile video I have seen yet.

Great videos! Very informative and well explained. Any chance you would make a similar video for I2P?

12:00 He talked about the possibility of de-anonymization through message time signature analysis. Isn't there way to, sort of, stagger those time signatures somehow?

This guy definitely put all of his skill points into speech.

This video made my day ! I got to learn a valuable lesson about Tor. Thankyou!

Thanks for releasing this just before your exam

Such a bad choice of an onion drawing, cant stop seeing it. Love the channel!

I wish Mike would have discussed the differences between exiting the TOR network into the clearnet and accessing hidden services (the packets never exit the TOR network).

Very cool guy. Its always nice to hear a lection from him. Next video could be how do people find you on a tor via flash or ads or cookies and so on.

Thanks. I don't know why but I find the way Dr Mike Pound talks about subjects to be very engaging. The pace, content and level is exactly at the level I like 'Great Job!' As the Americans would say. As a Brit it's more of a 'he's OK to be fair, end of' (great job, ignore the brit thing)

Why not add random delays to solve the deanonymizing problem? Would it be too costly for servers and make the connection too slow?

I would not want to be the last guy forwarding a request to some dodgy website.

Excellent video, as always. Thanks a lot!

great easy to understand explanation as always

Great video, but I think you should probably have mentioned hidden services (or otherwise servers running nodes themselves, such that the B node is the same as the server you're communicating with). Combining that with information about running one's own node (such that the user controls node A) gives a more complete picture of optimal Onion Routing conditions (though, again, not entirely without potential for pattern analysis). Lastly, I think some people in the comments appear to be treating "being an exit node" like a thing one chooses, so this is just to say that a node is a node and routes, while they can be controlled manually by the sender, generally are generated and the exit node has nothing to do with choosing which node will be the exit (or entrance, for that matter). Love your work, keep it up!

Wouldn't it be possible to use random network delay to prevent what you defined as frequency deanonymization? Lets say you have an average delay time on 1 second, and then each message gets randomly delayed from 0 to 2 seconds on each of the nodes. Yes, this would slow down the speed, but would greater improve the anonymity.

So do they do things like delay the packets by some random amount for each packet to make the tempo random, or to buffer them so that it waits for a quarter second collecting packets and then evenly distributes them in a random over the next quarter second, or to add random nonsense packets in at every point to make it more difficult to count packets?

Simply amazing! This is exactly how you should explain technology. Thank you.

I love these videos, but one day I'll make a compilation of Him putting His shirt straight on His left shoulder (with Yakety sax of course) :-D

Couldnt you theoretically have the messages passed through some random functions on every note so that their sendtime differs in a intervall of 0.1 to 1 second or something? Would that not solve the correlation possability ?

best host ever I absolutely love him doesn't matter what he is talking about its always interesting. .

I like this guy. I just subscribed. He explains things well like a friend who wants to teach you.

What are your thoughts on the US government claiming that Tor is essentially useless and they can spy on Tor traffic? Do you believe its entirely based on sniffing the beginning node and end node?

wouldn't a downside to being a node be that you'd get into trouble for the sites that other people went to? because it'll look like your computer went to those sites when it was someone on the other side of the world who actually requested it

I really appreciate your videos man, truly

Wonderful intermediate overview. Would recommend.

Hey great video. You talk a lot about the key excange. But how does this work? Cant the Routers see your IP when you pass them the key directly? Or if you send it trought the Routers you've already connected with, cant the see the Key for the next Router?

I always thought tor stood for "the onion ring". mmm... onion rings...

Nice explanation..But one question I have, I am doing reverse engineering on TOR network traffic. Can we distinguish between a relay node (B,C) and actual sender (A). Sender may be a relay node. Any byte pattern for this? Or any logic on the basis of RX and TX?

this guy is so interesting to listen to , captivating is the word

How does the client side share k2 and k3 without creating a connection with those machines?

We gonna have a word about the video thumbnail

I love computerphile so much!

So would it be possible to setup a cabinet of exit nodes and harvest urls from the packets, essentially mapping the tor network and making .onion directories easier to find?

8:53 "We've got a situation here where no one really knows anything about what's going on at all" gee sounds like my life and politics and lots of things really

3:30 if I as a client negotiated a symmetric key with each of the Tor Nodes that means each Tor node knows my IP address correct?

This video was great! I feel bad this channel doesn't have the same activity that it once had....

Any update on TOR over a VPN? Any preference? Thanks for the great video's.

4:25 I can't be the only one who sees something....

That picture in the thumbnail might not of been the best choice.

Thanks, I've been looking forward to a video like this for a while. Could you explain key exchanges in the future? Seems like that would be a weak point of this system, if you could find out which keys were accessed before a message was sent then you could figure out where the message went.

Very interesting and explained well. Cheers

You'll probably need to reupload this. There is a serious flaw at 4:09, where no image of Shrek appears when he says "in layers" and raises his eyebrows.

Gabe from Office seems to have taken a keen interest in tech! Good for Sabre for promoting cross team functions

I think that you can partially solve the problem, with someone controlling A and B (front and exit node) and measuring intervals between front and exit nodes, but you need to sacrifice performance... The idea is that you could delay each message by some random amount. Construct message with variable length of hops between you and server. E.g. exchange some keys from K1,K2,K3,K4,K5, construct 1st message K1->K5->K2->server, 2nd message K3->K2->server, 3rd message K4->K1->K4->K2->server, etc... because no node knows full path, and each message will have different amount of hops, all messages will arrive at different time ;) that's the general idea. In theses cases when server doesn't have "sticky" sessions, you can change exit not for each message!

Thanks, great explanation.

If I set up a TOR node, am I responsible for all the traffic that goes through it? Could you be arrested if some of the traffic was illegal?

What if the majority of the nodes is controlled by NSA?

I just got done watching the Silk Road movie and wanted to know more about this. Not for nefarious reasons. It’s just interesting. This was a great video thanks.

YES I've been waiting so long for this xD

Damn this thumbnail

But if your operating system is compromised as most are by default, tor is useless right? No?

8:54-8:58 beautifully sums up the current situation

The ring of power does indeed gives you superpowers, I never thought Frodo will end up in CS.