[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Reconciling link authentication and key rotation

To: mixminion-dev@freehaven.net
Subject: Re: Reconciling link authentication and key rotation
From: Nick Mathewson <nickm@alum.mit.edu>
Date: 05 Mar 2003 15:32:32 -0500
Delivered-to: archiver@seul.org
Delivered-to: mixminion-dev-outgoing@seul.org
Delivered-to: mixminion-dev@seul.org
Delivery-date: Wed, 05 Mar 2003 15:32:34 -0500
In-reply-to: <Pine.LNX.4.44.0303020704010.23451-100000@blackbird.lcs.mit.edu>
Organization:
References: <Pine.LNX.4.44.0303020704010.23451-100000@blackbird.lcs.mit.edu>
Reply-to: mixminion-dev@freehaven.net
Sender: owner-mixminion-dev@freehaven.net

On Sun, 2003-03-02 at 07:04, George Danezis wrote:
> On Sat, 1 Mar 2003, Roger Dingledine wrote:
> > I think I tend toward what the design doc says -- the hash included in
> > the message is a hash of the identity (signature) key of the next mix.
> > 
> > So when two nodes create a forward secure link with each other, they
> > each provide a certificate, including the transport key, signed by their
> > signature key? Is there a standard procedure for providing a new transport
> > key that's just as authentic (signed) as the old one?
> 
> This is how we have implemented it here in Cambridge. We should clarify in 
> the spec that the signature is the one of the long term signature key.

Eeek.  FYI, this means that the current code is wrong.  I'm going to fix
it, and fix the spec too if nobody has done so.

-- 
Nick Mathewson <nickm@alum.mit.edu>

References:
- Re: Reconciling link authentication and key rotation
  - From: George Danezis <gd@theory.lcs.mit.edu>

Prev by Date: Re: Reply Blocks and Best-Before
Next by Date: Re: Reply Blocks and Best-Before
Previous by thread: Re: Reconciling link authentication and key rotation
Next by thread: RE: [minion-cvs] Small corrections covering in particular the first half...
Index(es):
- Date
- Thread