[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Future Onion Addresses and Human Factors



Gah, I am evidently having a bad day with e-mail, so I am going to send a typo correction with this and then go do something else instead.

Corrections in caps, below.

â
Alec Muffett
Security Infrastructure
Facebook Engineering
London

On Aug 8, 2015, at 2:14 PM, Alec Muffett <alecm@xxxxxx> wrote:

Please  let a thousand discovery mechanisms bloom - including peer-to-peer directories and tweeted URLs.

But, what they boil down to, please let *that* be human-readable, too.  The more I THINK about it, the more I like:

a1uik-0w1gm-fq3i5-ievxd-m9ceu-27e88-g6o7p-e0rff-dw9jm-ntwkd-sdxxx.onion

âwhere the final âxxxâ is a 15-bit truncated secure hash of the rest of the original raw address bitstring.

That way people looking to quickly compare addresses can check the first QUINTET, and the last, and sample a few of the inner ones (ââpeople compare glyphs not wordsââ / âthereâs IEVXD and thereâs E0RFF, I like that one, itâs like Eeyore in Winnie-The-Pooh, and 0WLGM reminds me of Owls") and be reasonably satisfied and reasonably secure. 

And the XXX can be checked by the browser and tell the user that theyâve goofed-up cut/paste/typing-it-in. And then they bookmark it once it loads.


Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev