#tor-meeting2 log

16:00:09 <meskio> #startmeeting tor anti-censorship meeting
16:00:09 <MeetBot> Meeting started Thu Jun  2 16:00:09 2022 UTC.  The chair is meskio. Information about MeetBot at http://wiki.debian.org/MeetBot.
16:00:09 <MeetBot> Useful Commands: #action #agreed #help #info #idea #link #topic.
16:00:12 <meskio> hello everybody!
16:00:22 <meskio> here is our meeting pad: https://pad.riseup.net/p/tor-anti-censorship-keep
16:00:23 <shelikhoo> hi~
16:00:33 <meskio> feel free to add what you've been working on and put items on the agenda
16:02:04 <meskio> I see for now we only have one point in the agenda: Endless loop on the latest snowflake
16:02:48 <meskio> is this from our random cypherpunk?
16:03:39 <meskio> I think people should open issues with this kind of problems instead of dumping them into our pad
16:03:53 <meskio> if the author is not around I think we can skip it
16:04:07 <meskio> or does anybody want to talk about it?
16:04:45 <meskio> ok, lets go to the next point in the agenda: Implement metrics to measure snowflake churn
16:05:06 <shelikhoo> yes
16:05:27 <shelikhoo> this the one that try to count distinct proxy ip
16:05:41 <shelikhoo> and allow set operation on these proxy ip
16:05:58 <shelikhoo> so that we can know how fast does these proxy ip change
16:06:16 <meskio> nice!!!
16:06:21 <shelikhoo> to see how resilient our network is
16:06:42 <shelikhoo> it used hyperloglog++ structure
16:06:49 <shelikhoo> to do the count distinct
16:07:12 <shelikhoo> instead of remembering individual IP
16:07:31 <shelikhoo> so user's ip info is not extractable from our data
16:07:38 <shelikhoo> making it possible to publish this data
16:08:26 <shelikhoo> with all probabilistic data structure, it is not fully accurate
16:08:57 <shelikhoo> which is a free bonus in our use case
16:09:04 <meskio> +1
16:09:22 <shelikhoo> because we would record user info
16:09:30 <shelikhoo> and may even publish this info
16:09:51 <shelikhoo> so comments are welcomed
16:09:55 <meskio> sounds pretty good
16:09:59 <meskio> thank you
16:10:03 <shelikhoo> no problem
16:10:51 <cohosh> thanks shelikhoo for working on that
16:11:05 <cohosh> i'm interested to see the results
16:11:16 <shelikhoo> (additionally, user ip is keyed-hashed by a secret key first, so attacker can not either proof a ip is in poor or not without that secret key)
16:11:35 <shelikhoo> (additionally, user ip is keyed-hashed by a secret key first, so attacker can not either proof a ip is in pool or not without that secret key)
16:12:11 <shelikhoo> (additionally, user ip is keyed-hashed by a secret key first, so attacker can not neither proof a ip is in pool nor proof it is not in the pool without that secret key)
16:12:49 <shelikhoo> no problem~ I am interested to see the result as well
16:13:13 <meskio> yeah, let's see what it shows
16:13:13 <shelikhoo> that's all. an invitation for comment
16:13:34 <meskio> cool, I guess we can move to the next topic
16:13:50 <meskio> last week we were talking about enforcing having 2FA in gitlab
16:14:21 <meskio> I have contacted everybody that had commit access to gitlab's anti-censorship group without 2FA and ask them to set it up
16:14:46 <meskio> there are few accounts with non-commit permitions in the group that doesn't have 2FA, but I don't consider that a problem
16:15:19 <meskio> I left the point just to inform that is done
16:15:54 <meskio> anything else for today?
16:16:29 <meskio> should we pick a paper to discuss?
16:17:21 <meskio> maybe "Even Censors Have a Backup: Examining China's Double HTTPS Censorship Middleboxes": https://dl.acm.org/doi/10.1145/3473604.3474559 ?
16:17:57 <meskio> any other ideas?
16:18:32 <shelikhoo> nothing from me
16:19:43 <meskio> I would propose to do it in 3 weeks (June 23), as I will be AFK the next 2 thursdays
16:20:40 <shelikhoo> sounds good to me....
16:20:41 <meskio> ok, so if no one has any better proposal let's do that one
16:20:48 <meskio> anything else for today?
16:21:04 <meskio> (nice to have sort meetings once in a while :)
16:22:05 <shelikhoo> EOF
16:22:11 <meskio> #endmeeting