current community

your communities

more stack exchange communities

company blog
Stack Exchange Inbox Reputation and Badges
tour help
up vote 22 down vote favorite
4

This question is inspired by this article (in Russian) about a website called I Know What You Download. From what I understand, they scan the DHT networks and display torrents that any given IP participated in, and although it is sometimes inaccurate, it can provide data on Internet usage, and thus presents a threat to anonymity.

Most people suggest using VPN in order to conceal torrent traffic. However, in another article (also in Russian) same author shares his experience with torrenting over VPN set in Azure. Apparently, he received DMCA notice for torrenting a film (author specifically notes that he did not fully download the film, and everything was done for the sake of experiment). They provided the name and the size of the file, along with IP address and port. So, VPN is not an option.

But, some (if not all) torrent-sharing programs have an encryption feature. For instance, Tixati can even enforce encryption for both incoming and outgoing connections:

enter image description here

enter image description here

Question is: what does this feature encrypt? Name of the file, it's contents, size? Could it prevent DMCA notices? If not, what does it actually do?

Related: the answer there mentions encryption - does this kind of encryption count?

share|improve this question
8  
Encryption does not hide you, it hides your message from 3rd parties. If the torrent program is able to hide you, then how could you seed the torrent with others? All an IP holder needs to do is to participate in the torrent network and log all the seeders. – schroeder 20 hours ago
1  
Blocklists are hardly a solution. That assumes you know every single address the monitors are connecting from, that they never change and they never use new ones. PeerBlock strikes me as security theater. The only real "solution" here is to not download copyrighted content...it's 100% effective in avoiding infringement notices. – Johnny 18 hours ago
5  
If used correctly, a VPN should be an option for anonymous torrenting. Unless the user configures their torrent client incorrectly so it bypasses the VPN or the VPN provider is cooperating with the investigator. – Philipp 17 hours ago
1  
@Johnny it's not 100% effective. Or at least not if you use a router with out-of-the-box settings (e.g. guessable passwords). – Chris H 15 hours ago
1  
@Philipp the issue is the referenced author hosted their own VPN server on Azure, then used the VPN server to torrent a file, say at home. He then recieved a notice from his host, Azure, that his server was implicated in torrents - well duh. If you use a VPN to torrent, then the VPN will get served with notices regarding the torrent. The OP and guy conducting the VPN experiment clearly did not understand what was going on. The OP here on what the VPN issue was described in the article, the article author not understanding that the host not being in the US didn't automatically remove liability. – iheanyi 5 hours ago
up vote 30 down vote

Think of it like an underground fight club. Encrypting the traffic means nobody on the outside can see you enter or leave, but once you're inside, everybody there knows who you are and can monitor your participation.

This feature is really only useful if you have an ISP that blocks torrent traffic. Encrypting it means it doesn't appear to be torrent traffic, it's just an encrypted stream, but once you get past the ISP and connect to the swarm everybody else participating knows exactly who you are and what you're doing.

share|improve this answer
    
So, this makes it safe when the government uses the ISPs to track traffic? – J. C. Leitão 10 hours ago
3  
Wouldn't it be more accurate to say : "Anybody on the outside can see you enter or leave but doesn't know what you are doing. Once you're inside, everybody there can monitor your participation."? Encryption doesn't hide to who you are connecting. It just protects the content. – Gudradain 9 hours ago
    
If that's the only way the government in question is tracking it, maybe @J.C.Leitão. In particular, a government could even host a version of the file with a torrent client supporting encryption, and then they would be able to fully see who all was downloading it no matter what. – DaboRoss 2 hours ago
up vote 4 down vote

The "encryption" hides the torrent data traffic from a casual observer. It was designed to make it harder for ISPs to snoop on torrent traffic (and either block it, throttle it or send nastygrams). It can also be useful for evading the effects of buggy firmware in network devices*.

The cryptography used is relatively weak. The DH key exchange is only 768 bit with a fixed prime which is almost certainly crackable by a well-funded attacker. The actual encryption is rc4 which is known to have weaknesses though I don't know how relavent they are to this particular application. MITM attacks are possible if the attacker knows the "info hash" of the torrent in question.

Also it only protects data connections. It DOES NOT hide the fact you are present in the swarm from someone scanning the tracker or dht. It DOES NOT stop the bad guys from connecting to your client and downloading a copy of the file from you to demonstrate that you are illegally offering it for distribution.

* I have encountered cases where the same peice of a file was repeatly failling hash checks, turning on encryption fixed it. I suspect a buggy and/or overzealous NAT implementation was responsible.

share|improve this answer
up vote 2 down vote

what does this feature encrypt?

It encrypts the entire communication stream with other BT peers.

Name of the file, it's contents, size?

All of the above. Note that it is completely and utterly useless to encrypt these things as they are already PUBLIC.

Could it prevent DMCA notices?

It can prevent a residential ISP from casually snooping the traffic. In some countries this doesn't matter, as residential ISPs have no business snooping your traffic. In other countries, rightsholders have programs to cooperate with ISPs to detect piracy and serve out nastygrams.

If not, what does it actually do?

It is mainly security theatre. It will still be obvious to your ISP that you are using BT. It will still be easy for rightsholders to find out which IPs are sharing their content. So, the encryption doesn't solve any real problem. Someone added it to their BT client to draw dumb users who don't understand the security aspects at all. Then everyone else had to add it to their BT client too, even though it is mostly useless.

share|improve this answer

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.