Anonymity networks like Tor significantly enhance online privacy but are vulnerable to correlation attacks by state-level adversaries. While covert channels encapsulated in media protocols, particularly WebRTC-based encapsulation, have demonstrated effectiveness against passive traffic correlation attacks, their resilience against active correlation attacks remains unexplored, and their compatibility with Tor has been limited. This paper introduces TorKameleon, a censorship evasion solution designed to protect Tor users from both passive and active correlation attacks. TorKameleon employs K-anonymization techniques to fragment and reroute traffic through multiple TorKameleon proxies, while also utilizing covert WebRTC-based channels or TLS tunnels to encapsulate user traffic.

翻译：诸如Tor之类的匿名网络显著增强了在线隐私，但易受国家级对手发起的关联攻击。尽管封装在媒体协议（特别是基于WebRTC的封装）中的隐蔽信道已被证明能有效抵御被动流量关联攻击，但其对抗主动关联攻击的鲁棒性尚未得到探索，且与Tor的兼容性有限。本文提出TorKameleon，一种旨在保护Tor用户免受被动和主动关联攻击的审查规避方案。TorKameleon采用K匿名化技术，通过多个TorKameleon代理对流量进行分片与重路由，同时利用基于WebRTC的隐蔽信道或TLS隧道封装用户流量。