[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #5968 [Tor Relay]: Improve onion key management
#5968: Improve onion key management
-------------------------+--------------------------------------------------
Reporter: mikeperry | Owner:
Type: enhancement | Status: new
Priority: major | Milestone:
Component: Tor Relay | Version:
Keywords: | Parent: #5456
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Changes (by mikeperry):
* parent: #5563 => #5456
Old description:
> As a best practice behavior, a relay should check that the onion key it
> tried to publish is actually the one it sees in the consensus in which it
> appears.
>
> The onion key should also be what authenticates the TLS key (rather than
> the identity key, as it is now).
>
> This would prevent some utility vectors of identity key theft, where a
> non-targeted upstream MITM attempts to use a relays identity to
> impersonate it in order to execute a tagging attack (#5563).
New description:
As a best practice behavior, a relay should check that the onion key it
tried to publish is actually the one it sees in the consensus in which it
appears.
The onion key should also be what authenticates the TLS key (rather than
the identity key, as it is now).
This would prevent some utility vectors of identity key theft, where a
non-targeted upstream MITM attempts to use a relays identity to
impersonate it in order to execute a tagging attack (#5456).
--
Comment:
Wrong parent.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5968#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs