[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] new paper on Tor and cryptography

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] new paper on Tor and cryptography
From: Nick Mathewson <nickm@xxxxxxxxxxxxx>
Date: Sat, 10 Jan 2015 15:18:25 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 10 Jan 2015 15:18:37 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=Wq1Eg0WUlDtZIGv22dumRM8FZDXVN5DrsAKjXr0FErY=; b=h8mcHundP6ZtJLWVaL0Dz0u5atzBZJQhU5yFEGTZxWjKxLOOtyzxPvKvrqxIOPASaS UfNBvzgXmNvJNpc/LrfDzuwFntQZbM8vyS6+46MUm3MnZeziJYDMA6h+yhNN04fdW0y0 fE3v6EJVcPI/5yqLCxdPM7fmF5PXInZEicKF9b4834FL4Rhef378XYEbbhBKAJMlULb8 N8CXA5kw9rQHbd1KAVhhp4iE6UNQgAcVYPtpZJjD1yooVsf9uL24Zub/7eDk8y22UEAX 99hUgG5LcArKZPasPk1oGxFzqYzqTGHJehJ8T609/xQljkJvZhryN1HLq+W++zx45t9X w1VA==
In-reply-to: <20150110142831.03B02C0387@xxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <006101d02a65$488c4480$d9a4cd80$@com> <CAKDKvuwic+e==VA8nRHHL-a1Yz-v27LHOTRGpCcL8_NTJa8PvQ@xxxxxxxxxxxxxx> <20150110142831.03B02C0387@xxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, Jan 10, 2015 at 9:28 AM, l.m <ter.one.leeboi@xxxxxxxx> wrote:
> Nick Mathewson wrote:
>>  Personally, if I were doing something like this, I'd aim closer to
>>  Yawning's "Basket" protocol, which uses an established PQ
> construction
>>  (ntru in Basket's case) rather than trying to invent a novel one.
>
> While you're asking  --
> Isn't that like saying who needs SHA-3 because SHA-2 hasn't been
> proven
> broken? Why not just use MD-contruct? It uses the same argument, yes,
> no?

I'd say that it's more like saying "Why should a include a proposal
for a Tor handshake also include a new elliptic curve? Or a new hash
function?"

> Has the future of PQ computing become so well established?

I wouldn't say so, but I would say that the problem of "let's design a
new PQ primitive" is independent from "let's design a PQ handshake for
an anonymity network."  Ideally, the first one is something you'd get
done in a way so as to be generally useful, and you could specify the
second in terms of the first.

-- 
Nick
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] new paper on Tor and cryptography
  - From: taxakis
- Re: [tor-talk] new paper on Tor and cryptography
  - From: Nick Mathewson
- Re: [tor-talk] new paper on Tor and cryptography
  - From: l.m

Prev by Author: Re: [tor-talk] new paper on Tor and cryptography
Next by Author: Re: [tor-talk] GSOC 15
Previous by thread: Re: [tor-talk] new paper on Tor and cryptography
Next by thread: Re: [tor-talk] are there privacy benefits of running a bridge node?
Index(es):
- Author
- Thread