Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services

Subject: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services

From: Andrew F <andrewfriedman101@xxxxxxxxx>

Date: Fri, 17 May 2013 18:43:57 +0000

Delivery-date: Fri, 17 May 2013 14:50:50 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=yR0buE3mw70UrcIhwYvzQuJwuWrZCMWaN6gs0sTGp88=; b=qkJv+4v4E7SpCb8pR7j6OnHXIAWJIc3+W4uo1kpG5tgg8PsMkSY8uzZ6s+VBLpLp4o l/tVSPdwVd1hRT+2EvX9TIkiRKSh+JNZ8DQSTNE1UAjOFCrkYew4xlJ1rzEBUPrSTYz4 pNMNrxFHOcNLVGeggjX1IfpvQgnpx+Gr2g2IboQwO7823uVM30CQDkw3odzvNcjzn5SB tzEAf5oxgNqysNPHgm5Ia6pMgti275Egg1cXfDbq+8fjRNLXn1FTE/QozgsE/lo7d3Et 9H6xBGSF13uBvB3F6rrcSjh9ADS2M78UqKd8s4okBfwctZeii14xRwJe9luVtEaYBOWW ubLw==

In-reply-to: <5196481D.90207@xxxxxxxxxx>

List-archive: <http://lists.torproject.org/pipermail/tor-dev>

List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>

List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>

List-post: <mailto:tor-dev@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>

References: <1ce4ad2adaab4af523c4be2419e9c5df.squirrel@xxxxxxxxxxxxxxxxxxxxx> <5196481D.90207@xxxxxxxxxx>

Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx

Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

George,

I would definitely create an extended transition time frame. 6 months or a year where both keys will work. just make it clear there is a cut off date.

And I think Adrelanos's concept is a valid one. Since we may need to do this again, why not put a structure in place that facilitates upgrades to the system itself.

On Fri, May 17, 2013 at 3:09 PM, adrelanos <adrelanos@xxxxxxxxxx> wrote:

George Kadianakis:
> Thoughts?

Can you make .onion domains really long and therefor really safe against
brute force?

Or have an option for maximum key length and a weaker default if common
CPU's are still too slow? I mean, if you want to make 2048 bit keys the
default because you feel most hidden services have CPU's which are too
slow for 4096 bit keys, then use 2048 bit as default with an option to
use the max. of 4096 bit.

Bonus point: Can you make the new implementation support less painful
updates (anyone or everyone) when the next update will be required?
(forward compatibility)

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

_______________________________________________ tor-dev mailing list tor-dev@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev