I’m quite confused with Tor Entry Guards Whonix wiki article (can’t post the link).
Previously, I was religiously following the rule “less entry guards = better security”, based on Whonix wiki recommendations.
Many well-known, enhanced anonymity designs like Tor, Whonix ™ and the Tor Browser Bundle (TBB) use persistent Tor guards. This decision is attributable to community-based research which demonstrates that persistent Tor entry guards benefit security and lower the probability of an adversary profiling a user.
Creating a new Whonix-Gateway ™ (
sys-whonix) will likely lead to a new set of Tor entry guards, which is proven to degrade anonymity.
Forcing the rotation of guards more often than Tor’s default is dangerous for several reasons:
- It increases the likelihood of a compromised or malicious Tor guard being selected. This raises the chance of a successful correlation attack if the adversary runs Tor exit relays in the network
According to this information, more entry guards = bigger attack surface, higher chance of a compromised Tor guard. So, if you use multiple Workstations with multiple Gateways, it is recommended to use one entry guard for all Tor applications. That is what I always thought before.
Now it is absolutely different:
If I’m correct, Increase Protection from Malicious Entry Guards: One Guard per Application paragraph of the article is fairly new.
It was discovered that 1 guard/client per internet-connected program (not identity!) is the safest possible configuration. In fact, the probability of a network adversary observing a user’s activities is lower than the default scenario, whereby one Tor Entry Guard is relied upon for all applications.
So, I was wrong all the time? Different entry guards should be used not just for every separate identity, but per every internet-connected program?
For example, I have 10 separate identities. Each one of them has it’s Tor Browser, Email, IRC, Jabber and Mumble (5 programs total). According to this recommendation, I should use 50 different entry guards (50 different Gateways)?
@HulaHoop I would be very glad if you could help me to understand this topic.