Commit 902278bc374997e5c739c1dafde4c2c9e6909b08
Updated secure private channels: the good, the bad, and the ugly (markdown)
Dominic Tarr committed on 5/6/2015, 4:18:15 AMParent: 56107a3195fa8e6bd35cdcb9bd43a952268f4633
Files changed
| secure-private-channels:-the-good,-the-bad,-and-the-ugly.md | changed |
| secure-private-channels:-the-good,-the-bad,-and-the-ugly.md | ||
|---|---|---|
| @@ -188,4 +188,5 @@ | ||
| 188 | 188 | Alice and Bob (simultaniously): here is the random number you gave me. |
| 189 | 189 | |
| 190 | 190 | > Alice and Bob both send back the the nonce the other sent to them. This confirms they are authorized with the other peer, and can now begin secure communication. (NOTE: this means that the first nonce.length bytes of the ciphertext are a [high entropy] plaintext known to an eavesdropper) I don't think there is any special reason to send the nonce back, it might as well be the string "ACCESS GRANTED" (unless I am mistaken?) |
| 191 | 191 | |
| 192 | +ipfs-secure-channel is quite simple, although it could be a little simpler I think. It's basic properties are reasonable, although I think it would be better to remove cipher suite selection because that creates a better primitive. | |
Built with git-ssb-web