What notable cases exist where law enforcement used traffic correlation to deanonymize Tor users?

1. Academic demonstrations that made the threat concrete

Researchers have repeatedly shown that flow-correlation (end-to-end) attacks can deanonymize Tor users by observing timing and volume patterns at both the client-entry and exit-destination points. Foundational work such as the 2013 CCS paper and later surveys demonstrate that capturing both ends of a circuit and correlating flows defeats Tor’s low-latency model ^{[1] [5]}. More recent papers push the technical envelope: the NDSS 2024 SUMo flow-correlation method shows a distributed ISP-collusion approach that can deanonymize onion-service sessions, while 2025 preprints describe machine‑learning attacks that improve early-stage correlation ^{[2] [6]}. These academic results establish capabilities that an adversary with sufficient vantage points can exploit ^{[1] [2]}.

2. Real-world operations with law enforcement involvement — what sources report

Court documents and contemporaneous reporting tie at least one real-world deanonymization to an active traffic-confirmation-style technique. Reporting around arrests following Operation Onymous and later court materials suggested that the FBI acquired IP addresses of Tor onion services and visitors via a “relay early traffic confirmation” style attack; the timeline and method in those documents matched known research descriptions and raised ethics questions about university–law-enforcement research partnerships ^{[3] [4]}. The Attacks-on-Tor project and Wikipedia both note that the relay-early confirmation attack was actually performed on the live Tor network and that court filings linked an academic-style attack to subsequent arrests ^{[4] [3]}.

3. Nation-state scale surveillance and law enforcement capabilities — blurred lines

The Tor Project and related analyses repeatedly warn that Tor cannot protect against a global passive adversary that can monitor traffic at network borders; they explicitly cite agencies like the NSA as archetypal capable observers, and say the design does not defend against a determined actor watching both ends of flows ^{[7] [8]}. Security community posts and surveys echo that large-scale vantage points (many routers/ISPs collaborating) make correlation practical in ways that small-scale adversaries cannot achieve alone ^{[8] [2]}. Whether specific nation-state operations constituted deliberate “traffic correlation” prosecutions is not fully enumerated in the provided sources; they emphasize capability and risk rather than an exhaustive catalog of law-enforcement cases ^{[7] [8]}.

4. The 2014–2015 timeline and the CMU/FBI controversy

Sources in the dataset reference a controversy where a university research team developed an attack (relay-early confirmation) and subsequent court documents and Motherboard reporting tied that method to arrests in 2014–2015. The Attacks-on-Tor collection recounts rumors about FBI payments to Carnegie Mellon University to develop deanonymization code; CMU denied payments, but the technical description of the attack and timing aligned with the arrests and later court materials ^{[4] [3]}. This episode is important because it shows how academic techniques can cross into law-enforcement operations and spark debate over research ethics ^{[4] [3]}.

5. Law enforcement using exit-node monitoring and timing analysis — other reported examples

Some reporting and secondary sources describe cases where authorities ran exit-node monitoring and used timing analysis to identify Tor users — for example, German authorities reportedly identified a Tor user by running exit monitoring and timing analysis as described in a security writeup and blog summaries ^[9]. The Tor Project’s blogs also summarize modern concerns about netflow-based correlation: adversaries collecting router flow logs across many points can match Tor flows without full packet captures ^{[8] [7]}. These are described as practical techniques rather than exhaustive law-enforcement case catalogs ^{[8] [9]}.

6. What the sources do not show or leave ambiguous

Available sources do not provide a comprehensive, authoritative roster of every law-enforcement prosecution that relied solely on traffic-correlation to deanonymize Tor users. They do not detail the technical forensic chain used in each public arrest beyond high‑level links between specific attacks and court filings; for many claims (e.g., direct payment relationships or all operational details), sources either report denials or note incomplete evidence ^{[4] [3]}. Where sources explicitly refute a claim, they are cited; otherwise, absence of mention is reported as not found in current reporting ^[4].

7. Implications and competing perspectives

Security researchers warn that correlation remains a solvable technical problem only for attackers with broad visibility (many routers/ISPs or nation-state scale), and they propose mitigations like padding and path-selection changes ^{[8] [10]}. The Tor Project stresses that the network was not designed to resist global passive adversaries and treats these attacks as a known limitation ^[7]. Law-enforcement and judicial materials imply those technical methods have been weaponized in at least some prosecutions, but the full extent and attribution remain contested in public reporting ^{[3] [4]}.

If you want, I can extract the specific papers and reporting items cited here into a chronological table (research demonstration vs. reported law‑enforcement operation) using the exact sources above.