Re: Question about signing & verifying

To: or-talk@xxxxxxxxxxxxx

Subject: Re: Question about signing & verifying

From: ilter yÃksel <ilteryuksel@xxxxxxxxx>

Date: Wed, 17 Mar 2010 22:51:09 +0200

Delivered-to: archiver@xxxxxxxx

Delivered-to: or-talk-outgoing@xxxxxxxx

Delivered-to: or-talk@xxxxxxxx

Delivery-date: Wed, 17 Mar 2010 16:51:16 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=Z5ZN39gss79KSy02gQduzsAOq7iPXaYedYmCB7Mevm0=; b=iSyMQCn+cj9wWdROfTtE5A8+d8UU63nB2NWPH87lyQV1w3610CZl8mFkSv2zSMR50m dD1s+FEUoMknwzTiiGhB+cPesc7CUyv5bShZMhXmQqytmlNJ5XJkGER3yafAJqBYyHuk mbUnFjyLE/AraBlre7mw3yrggt/qdANqq4C40=

Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=k1th8PqapxcBv5+2gq/FYcK8QU2XENOByhRE5ly2+4RJWjqf8b1Vs1jNukD1D/j+14 uuEBAlT2Gpp4jnfSWvSYRIq02zJ1nWexgU+CAn16nm7weuJjK07UmYjaV77a9IeUCZgP V3i9L6H9YjPWJ5VU4uom0g6k/Awuf9FcvsEaA=

In-reply-to: <515320e1003162051u728c8c24g6b322cd3f95468c7@xxxxxxxxxxxxxx>

References: <515320e1003162051u728c8c24g6b322cd3f95468c7@xxxxxxxxxxxxxx>

Reply-to: or-talk@xxxxxxxxxxxxx

Sender: owner-or-talk@xxxxxxxxxxxxx

On Wed, Mar 17, 2010 at 5:51 AM, OÄuz <osolok@xxxxxxxxx> wrote:

On 3/13/10, ilter yÃksel <ilteryuksel@xxxxxxxxx> wrote:
> Hello,
>
> I've question about signing especially for signing router-descriptor;
>
> Is the router "signing-key" using to prepare a router's signature with
> digest algorithm? If so then does an OR sign it's router descriptor with
> it's signature? Finally can we say right for below sequence?
>
> "signing-key" ---- digest algorithm --- > "router-signature"
> initial "router-descriptor" ----- sign with "router-signature" --- > signed
> "router-descriptor"

Selamlar Älter,

Actually it is

descriptor ---> digest function
Â Â Â Â Â Â Â Â Â Â Â Â|
Â Â Â Â Â Â Â Â Â Â Â Âv
private key ---> ÂRSA engine ----> signature

> After that how a directory authority verify whether the router descriptor is
> self-signed?

signature
Â Â|
Â Âv
RSA engine Â---> recovered digest Â?=? Âdigest function <--- descriptor
Â Â^
Â Â|
public key (signing-key)

To demonstrate, in Java you might do something like:
http://pastebin.com/fvtS3Uyv.

Regards
OÄuz

-------------------------------
You have not experienced Tor documentation until you have read them in
the original Klingon
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk Â Âin the body. http://archives.seul.org/or/talk/