[Whonix-devel] Defeating TCP ISN skew attacks with SipHash or BLAKE2

bancfc at openmailbox.org bancfc at openmailbox.org
Sun Jan 8 19:07:29 CET 2017

Hi I am a Whonix OS developer (an anonymity distro like TAILS)

I've seen your work on upstreaming SipHash and I think it improves 
security across the network stack in important ways.

An area we're focused on for anonymity reasons is TCP ISN generation 
which is susceptible to CPU load clock skews in predictable ways which 
allows unmasking of Tor clients and Hidden Services. We've looked at 
ways to mitigate this and the solution we thought of is rewriting the 
ISNs with a 32-bit output of a PRF to obfuscate the timer output so its 
not detectable by a passive network adversary. (I believe BLAKE2 is a 
great drop-in solution here: has 32byte output and is really fast).

Can you please help us with this by proposing direct upstream patches 
that changes the way ISNs work (or even as a network sysctl option if 
upstream is too resistant)?


Relevant material:

events.ccc [.] 

phabricator.whonix [.] org/T543

*please remove the [.] to get working links.

More information about the Whonix-devel mailing list