[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Remaining 4 bits in prop224 addresses

To: Tor Dev Mailing List <tor-dev@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-dev] Remaining 4 bits in prop224 addresses
From: Jesse V <kernelcorn@xxxxxxxxxxxxxx>
Date: Tue, 6 Dec 2016 17:32:47 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 Dec 2016 17:33:04 -0500
In-reply-to: <877f7d81qc.fsf@riseup.net>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <074f19eb-f5d2-6065-5a2f-203f1d0cd718@riseup.net> <877f7d81qc.fsf@riseup.net>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 12/06/2016 11:24 AM, George Kadianakis wrote:
> I'd be interested in both a version field and a checksum to be part of
> the encoding of the onion address. I also don't mind extending the
> encoding by a character or two if that will make it more useful (there
> is little difference between 54 and 56 characters).

Sure, I don't see a problem with this. It's unlikely that we will need a
full byte for a version number. What if addresses are 53 characters
long, instead of 52? Now you have nine bits to work with. We could use
four of them for a version number and five for checksum. Alternatively,
if addresses are 54 characters, then we have 14 bits. Then we could use
four or five for versions and 9 or 10 for checksum.

> WRT version field, should it be a single value/bitmap or should it be
> able to denote support for multiple versions?

I'm not entirely sure what you mean by a bitmap here. It's unlikely that
we will need to denote new versions, but if we have some room, it could
be useful in case we need to.

> WRT checksum, how much of the address can we protect using a checksum of
> 1 or 2 bytes? My error-correcting-codes fu is a bit rusty, and I'm not
> sure how many errors we can detect/correct. Anyone can do some digging
> here and prepare a table, so that we can take an informed decision?
> Perhaps the bitcoin community has already done this for us.

We don't have enough room for an error-correcting Hamming code or
something like that. If we do want to use a simple checksum, I'm simply
concerned about ensuring that the address is correct. A simple code
won't be able to prevent from intentional modification, but it can help
with accidental typos to some degree. If we do want to use a checksum, I
suggest that we base it on a cryptographic hash function, such as SHA-2
or SHA-3.

If we use 54-character addresses, then we have room for up to 16
versions, and 10 bits of checksum, which gives us a 1/1024 chance of NOT
identifying a typo, right? Maybe the birthday paradox comes into play here.

-- 
Jesse

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Remaining 4 bits in prop224 addresses
  - From: Jesse V
- Re: [tor-dev] Remaining 4 bits in prop224 addresses
  - From: George Kadianakis

Prev by Author: Re: [tor-dev] Remaining 4 bits in prop224 addresses
Next by Author: Re: [tor-dev] sketch: An alternative prop224 authentication mechanism based on curve25519
Previous by thread: Re: [tor-dev] Remaining 4 bits in prop224 addresses
Next by thread: Re: [tor-dev] Remaining 4 bits in prop224 addresses
Index(es):
- Author
- Thread