[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Wed, 26 Feb 2014 11:27:54 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 26 Feb 2014 11:28:03 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=zTxi2i5swzIOLynAUfKXddZdw0uY7AgbcKrMbptb8vk=; b=ffycJlqD1yyCJEeeWiZi7sfJ/ZGHO9EKjQurht6KxqP5QCGG921kOKEjRfdO878d20 qgwtqEBFyOuplxiy0drggI8FilYYA45ObNuLVwjxh3rx9eBSz5eAi7+nVwP7F4JjqrGN M0SN0pmum8s+bUFtqGSCFx/t+QVt3tE3szjl0nrf+bA5fH/NqEy+fFkEWBAaLrEfXDiU JYUnTio69qsFNlZyyWNb2v7+VAisZhOj7HRK8tXHziDzaC5URLlExom+SEBseEATirES QEwDaUX8onmWFGUQiKLLescBXPxt/5x8mybOdYn50eGRoeHxdkpvR2tX0r6xAJuVYFQq SK+Q==
In-reply-to: <CAD2Ti2-FcH31f4ygzSVDaBK4xYW9nfta88uQuT-y=LDpA6fCtw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAKDKvuzC4j5OVCULqTZ6DnoQAL0wqqqumLeMeGq4qMb9wHr6Kg@xxxxxxxxxxxxxx> <CAD2Ti2-FcH31f4ygzSVDaBK4xYW9nfta88uQuT-y=LDpA6fCtw@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Feb 26, 2014 at 3:17 AM, grarpamp <grarpamp@xxxxxxxxx> wrote:
>>    that key (since you don't have the private key).  You _could_ do
>>    something weird in the TAP protocol where you .
>>
>
> Seems an editing/thought dropoff up there, it happens.

Sorry, I do that a lot.  It happens because I tend to write three or
four sentences at the same time.  I start writing one, then realize I
need to write another, so I begin another sentence without finishing
the first.  Then it happens again, and I start a third sentence
without finishing the second, and so on.  Usually, I finish all the
sentences as I walk back up my stack, but that still leaves more than
a handful unfinished.

In any case, I just expanded that sentence to read:

   (You _could_ do something weird in the TAP protocol where you
   receive an onionskin that you can't process, relay it to the
   party who can process it, and receive a valid reply that you
   could send back to the user.  But this makes you a less effective
   man-in-the-middle than you would be if you had just generated
   your own onion key.  The ntor protocol shuts down this
   possibility by including the router identity in the material to
   be hashed, so that you can't complete an ntor handshake unless
   the client agrees with you about what identity goes with your
   ntor onion key.)

Thanks for catching this,
-- 
Nick
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys
  - From: Nick Mathewson
- Re: [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys
  - From: grarpamp

Prev by Author: [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys
Next by Author: [tor-dev] Proposal 229: Further SOCKS5 extensions
Previous by thread: Re: [tor-dev] Proposal 228: Cross-certifying identity keys with onion keys
Next by thread: [tor-dev] Tor Browser Weekly IRC meetings at 19:00 UTC Wednesdays
Index(es):
- Author
- Thread