[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Hidden Services and identity-based encryption (IBE)

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Hidden Services and identity-based encryption (IBE)
From: teor <teor2345@xxxxxxxxx>
Date: Sun, 4 Dec 2016 15:36:52 +1100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 03 Dec 2016 23:37:26 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-transfer-encoding:mime-version:subject:date:references :to:in-reply-to:message-id; bh=FllTJSPVqLF6huit/i/2DQ9JxYhZSPVuS2QKlFP+D10=; b=xHlJqOYPiaeSrZ0JOdfFMDv0uZDeTU0KgTlrhIr7yd2CWojfheW0ZQYgh+KjytaeM1 aZjtexzgJVtQd4IPaGXOLErryFGtOChguGgwzVxtyKAKmM3dTjEA26rwsEtECJWY3WbA CsguK9cZJsYgR337leeWxsJLVPrOlpPRi5oDBaimXJROISYimF9mDlYjo6S8lbMLq6YF t6M05T0IrqEaDAkc8CUEy7vwmm0cmIn9+tqecgSAdcVhPLle4fwy+yUAF5XxE/J1tbgi IolsAz1IvibUiRFag63YfXcX+jMOsRg7TLQuXvy8iEt5huMm8kWjvqx6KLRVCSwlCEWQ 0rtA==
In-reply-to: <fa13dc58d7c563f306672adf7d1c36dc@openmailbox.org>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <fa13dc58d7c563f306672adf7d1c36dc@openmailbox.org>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> On 4 Dec. 2016, at 03:05, bancfc@xxxxxxxxxxxxxxx wrote:
> 
> Read the Alpenhorn paper. Really neat stuff. It is able to guarantee forward-secrecy for identities and metadata and doesn't need out-of-band identity sharing. Can any of this stuff be borrowed for HSs?
> 
> https://vuvuzela.io/alpenhorn-extended.pdf

There's still out-of-band identify sharing:

"does not require out-of-band communication other than knowing the
other user’s Alpenhorn username (email address)"

They also don't seem to understand how to do onion encryption
efficiently:

"A naïve approach would be to onion-encrypt a message [but] each layer
of encryption adds additional space overhead"

And the entire protocol requires trusting at least one of a series
of key servers.

T

-- 
Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B
ricochet:ekmygaiu4rzgsk6n
xmpp: teor at torproject dot org
------------------------------------------------------------------------



_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Hidden Services and identity-based encryption (IBE)
  - From: bancfc

Prev by Author: Re: [tor-dev] automatically detect many new identical/similar bridges
Next by Author: Re: [tor-dev] automatically detect many new identical/similar bridges
Previous by thread: [tor-dev] Hidden Services and identity-based encryption (IBE)
Next by thread: [tor-dev] Should Whonix recommend against using multiple workstations behind the same Tor-Gateway in all situations?
Index(es):
- Author
- Thread