Reuters reports that researchers have found a flaw in privacy-protective system Invisible Internet Project:
Researchers have found a flaw that could expose the identities of people using a privacy-oriented operating system touted by Edward Snowden, just two days after widely used anonymity service Tor acknowledged a similar problem.
The most recent finding concerns a complex, heavily encrypted networking program called the Invisible Internet Project, or I2P. Used to send messages and run websites anonymously, I2P ships along with the specialized operating system “Tails,” which former U.S. spy contractor Snowden used to communicate with journalists in secret.
Though a core purpose of I2P is to obscure the Internet Protocol addresses of its roughly 30,000 users, anyone who visits a booby-trapped website could have their true address revealed, making it likely that their name could be exposed as well, according to researchers at Exodus Intelligence. […]
Tails launches from a DVD or USB stick and is designed to maintain privacy even when a computer or network has been hacked.
Much more than I2P, Tails relies on Tor, the better-known anonymity system that it uses for all software connections to the Internet. […]
Tor programmer Roger Dingledine conceded that the researchers had found a flaw, and he said his team was now working to fix it before any public disclosure exposes dissidents and other types of users on Tor to greater risk of attack.
The I2P flaw will likewise be fixed. A spokesman for the I2P project said the group of developers was still analyzing the Exodus report.