[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] i"m not sure what man-in-the-middle attacks we were worried...



Update of /home2/or/cvsroot/tor/doc
In directory moria:/home/arma/work/onion/cvs/tor/doc

Modified Files:
	rend-spec.txt 
Log Message:
i'm not sure what man-in-the-middle attacks we were worried about,
but i agree that we don't need to worry about them for rendezvousing.
what we really meant was collision attacks. i think?


Index: rend-spec.txt
===================================================================
RCS file: /home2/or/cvsroot/tor/doc/rend-spec.txt,v
retrieving revision 1.30
retrieving revision 1.31
diff -u -p -d -r1.30 -r1.31
--- rend-spec.txt	17 Nov 2005 04:46:16 -0000	1.30
+++ rend-spec.txt	4 Feb 2006 20:07:45 -0000	1.31
@@ -254,9 +254,9 @@ $Id$
          2. Generate a 16-character encoding of H', using base32 as defined
             in RFC 3548.
 
-   (We only use 80 bits instead of the 160 bits from SHA1 because we don't
-   need to worry about man-in-the-middle attacks, and because it will make
-   handling the url's more convenient.)
+   (We only use 80 bits instead of the 160 bits from SHA1 because we
+   don't need to worry about arbitrary collisions, and because it will
+   make handling the url's more convenient.)
 
    The string "x", if present, is the base-32 encoding of the
    authentication/authorization required by the introduction point.