Browse Definitions :
Definition

Tor browser

Contributor(s): Matthew Haughn

The TOR (the onion routing) browser is a web browser designed for anonymous web surfing and protection against traffic analysis. Although Tor is often associated with the darknet and criminal activity, the browser is often used for legitimate reasons by law enforcement officials, reporters, activists, whistle blowers and ordinary security-conscious individuals.

TOR was originally developed by and for the United States Navy to protect sensitive U.S. government communications. While Tor continues to be used by government it is now an open source, multi-platform browser that is available to the public. The browser uses exit relays and encrypted tunnels to hide user traffic within the network, but leaves the end points more easily observable and has no effect beyond the boundaries of the network.

Although TOR is more secure than most commonly-used browsers, it is not impervious to attack. Malware, such as the Chewbacca Trojan, has successfully targeted the TOR network and browser. The FBI has also breached TOR security, in one case, for example tracking threats associated with a bomb hoax at Harvard across the network.   

This was last updated in May 2016

Continue Reading About Tor browser

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

So it was designed by the Navy and then put out into the world as open source. What led to this decision? How do we know it doesn't have some sort of back door in it to catch people who "think" it's secure?
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • California Consumer Privacy Act (CCPA)

    The California Consumer Privacy Act (CCPA) is legislation in the state of California that supports an individual's right to ...

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

SearchSecurity

  • endpoint detection and response (EDR)

    Endpoint detection and response (EDR) is a category of tools and technology used for protecting computer hardware devices–called ...

  • ransomware

    Ransomware is a subset of malware in which the data on a victim's computer is locked, typically by encryption, and payment is ...

  • single sign-on (SSO)

    Single sign-on (SSO) is a session and user authentication service that permits an end user to enter one set of login credentials ...

SearchHealthIT

SearchDisasterRecovery

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

SearchStorage

  • blockchain storage

    Blockchain storage is a way of saving data in a decentralized network which utilizes the unused hard disk space of users across ...

  • disk mirroring (RAID 1)

    RAID 1 is one of the most common RAID levels and the most reliable. Data is written to two places simultaneously, so if one disk ...

  • RAID controller

    A RAID controller is a hardware device or software program used to manage hard disk drives (HDDs) or solid-state drives (SSDs) in...

Close