[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Quantum-safe Hybrid handshake for Tor

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Sun, 3 Jan 2016 04:16:17 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 03 Jan 2016 04:22:52 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=IKKB6kyXuSPZU7p4eGCLAoyVQWN85CyokeVk+uIQssI=; b=TVsv19SHL/owqgavSy9DjUAr2fUVk6ZrT05N8ClviSZptd7lt8lxjUIL1D1cIUkNvL 5UGcf6D5KyaymThxc57oYnI547QCLUDkYVsU6iVhasRmO2y8on6PbRtL+LWtN1H/au4M apulujgasUb9rhTPNrY5+MoKyYv64xvMVUgysVnWRxAxjsvuBo/0BGEXovinP9N98tPR Gy/DwZP1rE+4IDu6Bbl5t3i6DK8caJr8Si/Z6T8PDirUfBsHe//ohtSZY7JXpSQZ7Ktz z1qyVxdkZIDOJ7OBJoPYJKE6nQX+vWj67qaA+liKuxwo8TrV//ZKhwKKKK7L2KmNME1q Kf/g==
In-reply-to: <20160103032229.4f2eb716@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAO7N=i2TKetVw9UeA9ARTy+N9faGpwNMXRy3xcds=1iWpzy1DA@xxxxxxxxxxxxxx> <20160103032229.4f2eb716@xxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, Jan 2, 2016 at 10:22 PM, Yawning Angel <yawning@xxxxxxxxxxxxxxx> wrote:
> In terms of prioritization, ensuring all existing traffic isn't
> subject to later decryption is far more important

I'd think so as you could adapt around other things, but
a traffic decrypt seems quite bad, especially given how
much is stored in purpose built agency farms for later action,
and how who's talking to who is perhaps already known.

> Additionally, without AVX2, signing is glacially slow, clocking in at
> ~200 ms on an Haswell i5.  The same hardware does our existing ntor
> handshake in ~230 usec.

Haswell i5 seems to have AVX2, as do all Haswell's,
perhaps you refer to Ivy Bridge i5's which do not...

https://software.intel.com/en-us/blogs/2011/06/13/haswell-new-instruction-descriptions-now-available/
https://en.wikipedia.org/wiki/Haswell_(microarchitecture)#New_features
https://en.wikipedia.org/wiki/Advanced_Vector_Extensions#AVX2
https://en.wikipedia.org/wiki/List_of_Intel_Core_i5_microprocessors
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
  - From: Yawning Angel

References:
- Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
  - From: Ryan Carboni
- Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
  - From: Yawning Angel

Prev by Author: Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
Next by Author: Re: [tor-dev] Proposal: Stop giving Exit flags when only unencrypted traffic can exit
Previous by thread: Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
Next by thread: Re: [tor-dev] Quantum-safe Hybrid handshake for Tor
Index(es):
- Author
- Thread