Professional Documents
Culture Documents
Onion Services
torproject.org
Before we begin…
torproject.org
Table of contents
1. Introduction to Tor
2. Applications that run on the Tor network
3. Introduction to Onion Services (.onion)
4. When digital evidence leads to prosecution
5. “Deep” or “Dark” Web?
6. Hands-on activities (OnionShare)
7. Tor secure access package and onion support
8. Latest developments
torproject.org
Introduction to Tor
torproject.org
Connecting through HTTP
torproject.org
Connecting through HTTPS
torproject.org
Connecting through VPN
torproject.org
Connecting through Tor
torproject.org
Who can see your
activity through
HTTPS and what can
they see?
torproject.org
Who can see your
activity through Tor
and HTTPS and what
can they see?
torproject.org
Different ways of defining Tor
torproject.org
Fighting the Internet’s original sins
torproject.org
It’s traffic analysis
resistance!
Governments
Businesses
It’s network
security!
torproject.org
“
We kill people
based on metadata
Director of the NSA and CIA
General Michael Hayden
torproject.org
Two sides of the same coin
torproject.org
What is Tor Browser?
torproject.org
Multilingual Browser
torproject.org
Tor Browser on Android Onion Browser on iOS
Developed by the Tor Project Developed by the Guardian Project
https://www.torproject.org/download/ https://onionbrowser.com/
torproject.org
A growing network of relays
torproject.org
Bypassing censorship of the Tor network
torproject.org
Bypassing censorship of torproject.org
torproject.org
Applications that
run on the Tor
network
torproject.org
Operating system
torproject.org
System-wide VPN
torproject.org
Secure whistleblowing
torproject.org
Anonymous peer-to-peer messaging
torproject.org
Introduction to
Onion Services
(.onion)
torproject.org
● Onion Services are online services that are only
available through the Tor network.
● An Onion Service connects to a rendez-vous
node/relay inside the Tor network; and the user
wanting to connect to it does the same.
● As a user, you never leave the Tor network when
visiting an Onion Service.
● Onion Services provide end-to-end encryption:
both visitor and website use Tor (without
HTTPS).
torproject.org
Visiting the Intercept’s site on Tor Browser vs. visiting the Intercept’s onion service
torproject.org
.onion addresses
torproject.org
Censorship resistance
torproject.org
Metadata obfuscation and elimination
● When you use the Tor network to browse the web you are not sending
any information by default of who you are or where you are
connecting from.
● The Onion Services use the Tor network to eliminate information
about where they are situated.
● Using them eliminates all metadata that may be associated with the
service otherwise.
torproject.org
Maximum harm reduction
● Leaving the Tor network still puts users at risk of censorship and other
security and privacy risks, Onion Services almost diminish these risks.
● Even if websites are under DDOS, Onion Services could still give access to
content of the site (in the case that the onion service itself is not under
DDOS!).
torproject.org
Decentralizing the web
torproject.org
Onion-Location
torproject.org
torproject.org
Popular Onion Services
torproject.org
Benefits of Onion Services
torproject.org
Comparison
torproject.org
Why Onion Services matter
torproject.org
When digital
evidence leads to
prosecution
torproject.org
Case 1: anti-Trump activists
torproject.org
Case 2: French climate activist
● Proton Mail started logging IPs of Parisian anti-gentrification and climate activist
following an order from Swiss and French authorities.
● French authorities ended up identifying and arresting activist in question, and
wider group faced legal consequences.
● Proton is required by Swiss law to comply with certain legal requests.
● Activists are advised to use Proton through its Onion Service:
https://proton.me/tor
torproject.org
Case 3: Saudi dissidents
torproject.org
Case 4: seeking abortion
● State of Nebraska submitted a search warrant to look into the Facebook accounts
of a mother and daughter planning an abortion.
● Facebook complied and provided record of private messages on both accounts.
● Police used chats as an excuse for a second warrant.
● Mother and daughter charged.
● Using Facebook’s Onion Service decreases such risks:
https://www.facebookwkhpilnemxj7asaniu7vnjjbiltxjqhye3mhbshg7kx5tfyd.onion
torproject.org
“Deep” or “Dark”
Web?
torproject.org
What’s actually the “deep” web?
torproject.org
Important to note about the “dark web”
torproject.org
torproject.org
Iceberg analogies
● The web is usually represented as an elongated iceberg with ~90% of its body deep
below water.
● This iceberg’s orientation is unstable and won’t be found in nature floating like this, it
would only float on its side…
● More importantly, it’s a false analogy of the web that doesn’t serve any purpose other
than spread misconceptions!
torproject.org
How the “Dark Web” is usually represented
Onion services
Online criminal activity
Dark Web
Unindexed websites
torproject.org
The reality
Onion services Online criminal activity
Unindexed websites
torproject.org
The reality
Onion services Online criminal activity
Dark web?
Unindexed websites
torproject.org
The reality
Onion services Online criminal activity
Dark web?
Unindexed websites
torproject.org
The reality
Onion services Online criminal activity
Dark web?
Unindexed websites
torproject.org
It’s important to look at scale
Online criminal activity
Onion services
Dark web?
Unindexed websites
torproject.org
Metrics on Onion Services
torproject.org
Activity 1:
deploying an
Onion Service
torproject.org
OnionShare
● OnionShare is an open source tool that allows secure and anonymous file
sharing, website hosting, and chatting.
● All communication happens on the Tor network.
● Link: https://onionshare.org/
torproject.org
Step 1: Download OnionShare
torproject.org
Step 2: Download a website template
torproject.org
Step 3: Select “Host a Website”
torproject.org
Step 4: Upload website template
torproject.org
Step 5: Launch your Onion Service
torproject.org
Step 6: Share your .onion address!
torproject.org
Activity 2: sharing
files securely
torproject.org
OnionShare
● OnionShare is an open source tool that allows secure and anonymous file
sharing, website hosting, and chatting.
● All communication happens on the Tor network.
● Link: https://onionshare.org/
torproject.org
Step 1: Download OnionShare
torproject.org
Step 2: Select “Share Files”
torproject.org
Step 3: Upload your file
torproject.org
Step 4: Share your file
torproject.org
Step 5: Copy and share the address and key
torproject.org
Step 6: Download through Tor Browser
torproject.org
Tor secure access
package and onion
support
torproject.org
How the Onion Support team can help
torproject.org
The Tor Secure Access Package should
not replace existing security strategies,
rather it should be integrated within a
holistic security plan.
torproject.org
Awareness via the Onion Launchpad
torproject.org
Advocacy campaigns
Circumventing censorship campaign to
direct audience to landing page
torproject.org
Monitoring via OnionProbe
torproject.org
Useful links
torproject.org
torproject.org
Latest
developments
torproject.org
Version 3 of Onion Services
torproject.org
Sauteed Onions
torproject.org
Thank you!
torproject.org