Skip to content

Commit

Permalink
Clarify regarding powerful attacker
Browse files Browse the repository at this point in the history
  • Loading branch information
@faern
faern committed Dec 11, 2024
1 parent 9cc6d4b commit 3028555
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions audits/2024-12-10-X41-D-Sec.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -204,9 +204,9 @@ With this information they can potentially infer if the connections belong to th
user of the observed tunnel or not.

Attacks like these are not specific to Mullvad VPN. The attack simply relies on core
internet functionality and pattern matching. The threat model defined in the report makes
it clear that a too powerful attacker who can observe and manipulate internet traffic
on a global scale is virtually impossible to fully protect against.
internet functionality and pattern matching. The threat model defined in the report
makes it clear that it's virtually impossible to be fully protected against a very
powerful attacker that can observe and manipulate internet traffic on a global scale.

[DAITA] mitigates this attack to some extent by padding all packets to the same size
and injecting noise in the tunnel. This makes it significantly harder for the
Expand Down

0 comments on commit 3028555

Please sign in to comment.