[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[minion-cvs] Some arguments about why it might be a good idea to pro...

To: mixminion-cvs@freehaven.net
Subject: [minion-cvs] Some arguments about why it might be a good idea to pro...
From: gd@seul.org
Date: Sun, 12 Jan 2003 10:45:39 -0500 (EST)
Delivered-to: archiver@seul.org
Delivered-to: mixminion-cvs-outgoing@seul.org
Delivered-to: mixminion-cvs@seul.org
Delivery-date: Sun, 12 Jan 2003 10:45:50 -0500
Reply-to: mixminion-cvs@freehaven.net
Sender: owner-mixminion-cvs@freehaven.net

Update of /home/minion/cvsroot/doc
In directory moria.mit.edu:/tmp/cvs-serv516

Modified Files:
	minion-spec.tex 
Log Message:
Some arguments about why it might be a good idea to provide a mechanism to
query mix servers for their information, or the information of other servers.



Index: minion-spec.tex
===================================================================
RCS file: /home/minion/cvsroot/doc/minion-spec.tex,v
retrieving revision 1.72
retrieving revision 1.73
diff -u -d -r1.72 -r1.73
--- minion-spec.tex	12 Jan 2003 04:24:37 -0000	1.72
+++ minion-spec.tex	12 Jan 2003 15:45:35 -0000	1.73
@@ -71,6 +71,34 @@
  application for this.  Clients can't use it without leaking which
  servers they're interested in, and giving servers the opportunity to
  lie to clients.  What's the upside?) -NM]
+[I believe that this will make it more easy to construct Directory servers. 
+ For some reason I have the feeling that it will scale better if directory 
+ servers know about mixes (and can query them automatically) rather than the 
+ other way around (mixes knowing about directory servers). This way one can 
+ run independently a directory server, without any collaboration from the mix
+ network (other than the ability to request info). 
+
+ Let's not forget that the
+ mixes *sign* their information with a long term key, therefore after you 
+ establish that you trust a signing key to belong to an honest server, the 
+ operation of querying a directory server for updates is simply a question 
+ of transport and not of trust. Of course you still trust them to give you a 
+ information on a complete set of servers, but this can also be checked. 
+ It is also true that the a client requesting only the information on the 
+ servers it is about the use will ruin its anonymity. On the other hand if key
+ updates are not frequent, then the client can slowly update its database in 
+ the background.
+
+ Even more possibilities open up if each mix server give on request not only 
+ their information but also what they think the state of other servers, they 
+ have contacted in the past, is. This way each server you might contact will 
+ give you a set of other servers, that can be used by clients to construct a 
+ complete picture. Which ones are to be trusted is of course an orthogonal 
+ issue, but once it is decided the updated information could flow very 
+ quickly. (this is in fact a gossip protocol)
+
+ These are the reasons why I think it might be a good idea to have automatic 
+ on request information from servers. -GD]
 
 \section{Message Format}

Prev by Date: [minion-cvs] Halftested] Add support to MMTP for connection padding,...
Next by Date: [minion-cvs] Don"t build twice on "make test"
Previous by thread: [minion-cvs] Halftested] Add support to MMTP for connection padding,...
Next by thread: [minion-cvs] Don"t build twice on "make test"
Index(es):
- Date
- Thread