[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Reconciling link authentication and key rotation

To: mixminion-dev@freehaven.net
Subject: Re: Reconciling link authentication and key rotation
From: George Danezis <gd@theory.lcs.mit.edu>
Date: Sun, 2 Mar 2003 07:04:58 -0500 (EST)
Delivered-to: archiver@seul.org
Delivered-to: mixminion-dev-outgoing@seul.org
Delivered-to: mixminion-dev@seul.org
Delivery-date: Sun, 02 Mar 2003 07:05:01 -0500
In-reply-to: <20030301020742.Y15994@moria.mit.edu>
Reply-to: mixminion-dev@freehaven.net
Sender: owner-mixminion-dev@freehaven.net

On Sat, 1 Mar 2003, Roger Dingledine wrote:
> I think I tend toward what the design doc says -- the hash included in
> the message is a hash of the identity (signature) key of the next mix.
> 
> So when two nodes create a forward secure link with each other, they
> each provide a certificate, including the transport key, signed by their
> signature key? Is there a standard procedure for providing a new transport
> key that's just as authentic (signed) as the old one?

This is how we have implemented it here in Cambridge. We should clarify in 
the spec that the signature is the one of the long term signature key.

G.

Follow-Ups:
- Re: Reconciling link authentication and key rotation
  - From: Roger Dingledine <arma@mit.edu>
- Re: Reconciling link authentication and key rotation
  - From: Nick Mathewson <nickm@alum.mit.edu>

References:
- Reconciling link authentication and key rotation
  - From: Roger Dingledine <arma@mit.edu>

Prev by Date: (FWD) Re: Comparing mixminion's repadding with your RSA talk?
Next by Date: Re: Reconciling link authentication and key rotation
Previous by thread: Reconciling link authentication and key rotation
Next by thread: Re: Reconciling link authentication and key rotation
Index(es):
- Date
- Thread