[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
From: Robert Ransom <rransom.8774@xxxxxxxxx>
Date: Fri, 10 Aug 2012 21:53:11 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 10 Aug 2012 17:52:32 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=H9ItiTje3lHAaCUp2ejK/xPfqGAAKZrkyUHsnJsXiUU=; b=vt0PbUA7MSJt0/YvRoBFMYmO+H4J0fKGKUs/LMwtpQOv57IMHh2TOkdvLWIme46G74 UqWlqW0MhPj9y/BDFW90uhQwjo/DXI3UFRfdABqpOuyR/rXspUs19KTOfmJFcN+/x7Ul V0PdSAiiSE4RX0m2eSoYZdInQJVMtEqE/XKI4z17efzjU+NHMt7tHegFHBa7ujbe9BA4 urHeLwQCLJ9tcXBilAZuZ2L5YY2ddRXq+sKBUe2Hjeci26PPzD0nBnKDMFF7EgKCULhW DrJ2IttvRaWjfkA8ssI4NGspmC+4Pc2XSC82qos3IfzRIzyM6xdqI20n3YcKC0//kXYT E9kA==
In-reply-to: <CAKDKvuxxE5njbvNQ+3ye17w6k7UATbe7Px6Aq_Fa1yBzOrxYXQ@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAKDKvuxxE5njbvNQ+3ye17w6k7UATbe7Px6Aq_Fa1yBzOrxYXQ@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On 8/8/12, Nick Mathewson <nickm@xxxxxxxxxxxxx> wrote:

> http://www.infsec.cs.uni-saarland.de/~mohammadi/owake.html

Also, where does this paper specify that the participants must check
that public-key group elements are not equal to the identity element?
That's rather important, as Tor's relay protocol is likely to break if
an attacker can force a server to open additional circuits to an
attacker using the same key material that a legitimate client's
circuit has.


Robert Ransom
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
  - From: Robert Ransom

References:
- [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
  - From: Nick Mathewson

Prev by Author: Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
Next by Author: Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
Previous by thread: Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
Next by thread: Re: [tor-dev] Another key exchange algorithm for extending circuits: alternative to ntor?
Index(es):
- Author
- Thread