[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses
From: Vi Grey <vigrey@xxxxxxxxxx>
Date: Sat, 04 Feb 2017 20:14:00 -0600
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 04 Feb 2017 21:14:28 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1486260841; bh=NJg+V13QIGNDHt4eI7Wr+XRMBGm3sXOFGs5rMgn6+wA=; h=Date:From:To:Subject:From; b=JYtTPHzQpjd8hV7HTbDcibJWzh3t5n5AhNwdiccVCZZSai2dgoRmzzJS40pDjB0on 3JrdW19Zt7p9L3iOMKPzo1zl10xvbPDkCPt5AszeMAC975SvO673kHNeXxsToJoNrp DqvSgpyND1YzM3+KSG0+YjQnzxBjv0r3L8eHgNUw=
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

Here is the suggested scheme:

  onion_address = base32(version + pubkey + checksum)
  checksum = SHA3(".onion checksum" + version + pubkey)


Wouldn't SHA3 be computational overkill if we're just worrying about the
checksum making sure the .onion address wasn't mistyped?  My suggestion
would be to use something like this for the checksum:

  checksum = HMAC-CRC32(".onion checksum", version + pubkey)[2:]
  (with the HMAC key as its first argument)

HMAC-CRC16 could be used as well instead of a truncated HMAC-CRC32, but
CRC16 is a lot less standard than CRC32.

Also, should we consider including a Version option eventually in the
ADD_ONION control port command when using a KeyBlob?  It wouldn't matter
much for this new version and probably wouldn't matter much for a while,
but it might be good to keep this in mind for the future.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses
  - From: Taylor R Campbell

Prev by Author: Re: [tor-dev] Prop224 oppurtunity: keygen, crypt, sign, encoding tools
Next by Author: Re: [tor-dev] Proposing "Post-Quantum safe handshake implementation" as GSoc Project
Previous by thread: Re: [tor-dev] generate relay fingerprint without tor given the datadir/keys folder?
Next by thread: Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses
Index(es):
- Author
- Thread