Commit 6b1b490b01eb3d08958fffea2d79baaaf6806ada
Updated secure private channels: the good, the bad, and the ugly (markdown)
Dominic Tarr committed on 4/22/2015, 10:36:10 AMParent: 58b62259f8207b22287c25a885f0e04f8825df2c
Files changed
| secure-private-channels:-the-good,-the-bad,-and-the-ugly.md | changed |
| secure-private-channels:-the-good,-the-bad,-and-the-ugly.md | ||
|---|---|---|
| @@ -11,9 +11,9 @@ | ||
| 11 | 11 | I was considering putting authentication inside of this protocol but I am now re-evaluating that. |
| 12 | 12 | |
| 13 | 13 | ### dramatization of private stream |
| 14 | 14 | |
| 15 | -alice and bob meet in a dark alleyway | |
| 15 | +Alice and Bob meet in a dark alleyway | |
| 16 | 16 | |
| 17 | 17 | Alice & Bob (simultaniously) passes each other a secret note, also with random number written on outside. |
| 18 | 18 | |
| 19 | 19 | > Alice and Bob now combine their secret, with the secret they received and the random numbers, |
| @@ -117,16 +117,19 @@ | ||
| 117 | 117 | CurveCP uses Boxing as the only primitive. A box is encrypted to a recipient key, and signed by the sender. I think the signature is inside the box, so that only the recipient can open and verify. |
| 118 | 118 | |
| 119 | 119 | ### Dramatization of CurvesCP handshake |
| 120 | 120 | |
| 121 | -Alice generates a temporary identity Andy | |
| 121 | +Alice generates a temporary identity Andy. | |
| 122 | + | |
| 122 | 123 | Alice says: "Hi call me Andy" and Boxes a message from Andy (that is all zeros) |
| 123 | 124 | > Alice sends her temporary identity (Andy) to Bob. |
| 124 | 125 | > And a message of zeros boxed by Andy. |
| 125 | 126 | > this is so that her message is not longer than bobs (we'll ignore this for now) |
| 126 | 127 | |
| 127 | -Bob generates a temporary identity Betty | |
| 128 | -Bob boxes a message to Andy: hi call me Betty, also please remember this code word: c00k13z | |
| 128 | +Bob generates a temporary identity Betty. | |
| 129 | + | |
| 130 | +Bob boxes a message to Andy: "hi call me Betty, also please remember this code word: c00k13z" | |
| 131 | + | |
| 129 | 132 | > Bob sends his temporary identity to Alices temporary identity. |
| 130 | 133 | > Bob does not know who Alice is yet, but he knows that Alice knows who he is, |
| 131 | 134 | > (otherwise he would not have been able to decrypt her message!) |
| 132 | 135 | > so he boxes it as Bob. |
| @@ -135,12 +138,13 @@ | ||
| 135 | 138 | > because he is worried about people wasting his time (Denial of Service attacks) |
| 136 | 139 | |
| 137 | 140 | Alice now knows that she is talking to bob, and that bob knows she knows this. |
| 138 | 141 | |
| 139 | -Alice boxes Andy's id to Bob, and then Andy boxes _that box_ to Betty. | |
| 142 | +Alice boxes Andy's id to Bob, and then Andy boxes _that box_ to Betty, then sends it back, along with the cookie. | |
| 140 | 143 | > Bob can now unpack Andy's box (as Betty), and then finds a box from Alice inside that is addressed to Bob, containing Andy's key. Now Bob knows he is talking to Alice. |
| 141 | 144 | |
| 142 | -Bob and Alice now know who they are talking to, (although they will continue to converse as Andy and Betty instead, sneaky!) | |
| 145 | +Bob and Alice now know who they are talking to, | |
| 146 | +(although they will continue to converse as Andy and Betty instead, sneaky!) | |
| 143 | 147 | |
| 144 | 148 | From now on, they just box messages as Andy and Betty, |
| 145 | 149 | except that Andy includes Andy's pubkey along with the box. |
| 146 | 150 | |
Built with git-ssb-web