#5968: Improve onion key management
-------------------------+--------------------------------------------------
Reporter: mikeperry | Owner:
Type: enhancement | Status: new
Priority: major | Milestone:
Component: Tor Relay | Version:
Keywords: | Parent: #5563
Points: | Actualpoints:
-------------------------+--------------------------------------------------
As a best practice behavior, a relay should check that the onion key it
tried to publish is actually the one it sees in the consensus in which it
appears.
The onion key should also be what authenticates the TLS key (rather than
the identity key, as it is now).
This would prevent some utility vectors of identity key theft, where a
non-targeted upstream MITM attempts to use a relays identity to
impersonate it in order to execute a tagging attack (#5563).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5968>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs