[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Error-Correcting Onions with Bech32

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Error-Correcting Onions with Bech32
From: Alec Muffett <alec.muffett@xxxxxxxxx>
Date: Sun, 31 Dec 2017 12:01:44 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 31 Dec 2017 07:02:41 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=wNQIpazsLeWinZ48rF+en5sMUeRxkdiYZPTGXZ06T54=; b=TVMgEDNdI+SkFcc4gwQwGh7mpv7oHza2r40jGN7ltdvA3k97AK2I5Vc9bRKMs+FVZy vSvAwOIVNPrgESaBAekMSEZYWoJs9p4WC8H8Kthg7ObD16VcfxuTm9cLxzBOTpRcICHY cQKsOAYZIwK6uOtcPhS0lTwhd0SwtUkvSxQWy6dgtJ8OZ1JH6WxonV/fkNA3qO2KkKwt 46njD044zxhHyVr7JwxpU4OffufFPQiuAVkGTTLu+70TuUo6/6slIVuzPg76QGkdLqwT 04OgvlWvYTwbzGhaBLVzSD7WZRvEJSpoP0V1Wdj9yqyWT6A6NFeOVXLGNso4iQNxv/aY pQIw==
In-reply-to: <CAFWeb9+ag5WSgq9Hi9+t46c_oFgc3UuPDEnbW1DBAa-Zszk8FQ@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <d7da66c02c838afd73e3384d09e8f59b@nym.zone> <CAFWeb9KhgkGzQro4M1kJL4H5oay6+c3jquAYtPV9oMQEfcAHjg@mail.gmail.com> <6d2ba6d0840913faa4dd10af21383501@nym.zone> <CAFWeb9+ag5WSgq9Hi9+t46c_oFgc3UuPDEnbW1DBAa-Zszk8FQ@mail.gmail.com>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 31 December 2017 at 11:46, Alec Muffett <alec.muffett@xxxxxxxxx> wrote:

...so that any UX component which wants to help the user can highlight (in red? or bold?) where the problem is, picking out a chunk of 12 characters which contain the typo:
https://www4acth47i6kxnvkewtm6q7ib2s3ujpo5sqbsnzjpbi7utijcltosqemadwxyz.onion/
---------------------------------^^^^^^^^^^^^
Spot the errant 'j'.
The advantage of a system like this is that it's not perfect, but a typo mostly has to happen twice and be quite fortunate to go undetected.
Of course it's not perfect, but nothing will be, and clever selection of checksum and encoding will result in something which is still DNS- and Browser-compliant.

One other advantage: a DNS-format-compliant checksum like this could be trivially baked into an SSL certificate without requiring CA/Browser Forum to invent a wholly new kind of certificate just-for-Tor

This would result in Prop224 Onion Addresses which would not only be typo-resistant, but could also continue to be issued with EV certificates where site-attestation is beneficial.

Further: adding segment-checksum bits at the end would be (I think?) backwards compatible with existing Prop224 addresses.

-a

--

http://dropsafe.crypticide.com/aboutalecm

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Error-Correcting Onions with Bech32
  - From: teor

References:
- [tor-dev] Error-Correcting Onions with Bech32
  - From: nullius
- Re: [tor-dev] Error-Correcting Onions with Bech32
  - From: Alec Muffett
- Re: [tor-dev] Error-Correcting Onions with Bech32
  - From: nullius
- Re: [tor-dev] Error-Correcting Onions with Bech32
  - From: Alec Muffett

Prev by Author: Re: [tor-dev] Error-Correcting Onions with Bech32
Next by Author: Re: [tor-dev] Error-Correcting Onions with Bech32
Previous by thread: Re: [tor-dev] Error-Correcting Onions with Bech32
Next by thread: Re: [tor-dev] Error-Correcting Onions with Bech32
Index(es):
- Author
- Thread