I2P Address: [http://git.idk.i2p]

Skip to content
Snippets Groups Projects
Commit 3f7d4637 authored by jrandom's avatar jrandom Committed by zzz
Browse files

* specify exactly what gets in the DSA signatures for the connection establishment 

* include a new signedOnTime so that we can prepare the packet at a different moment from
  when we encrypt & send it (also allowing us to reuse that signature on resends for the same
  establishment)
parent b36def1f
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 25 additions and 14 deletions
router/doc/udp.html
+ 25
14
View file @ 3f7d4637
<code>$Id: udp.html,v 1.8 2005/04/04 12:21:30 jrandom Exp $</code> <code>$Id: udp.html,v 1.9 2005/04/05 10:28:54 jrandom Exp $</code>
<h1>Secure Semireliable UDP (SSU)</h1> <h1>Secure Semireliable UDP (SSU)</h1>
<b>DRAFT</b> <b>DRAFT</b>
...@@ -138,9 +138,13 @@ around briefly, to address packet loss and reordering.</p> ...@@ -138,9 +138,13 @@ around briefly, to address packet loss and reordering.</p>
<li>that many byte representation of Alice's IP address</li> <li>that many byte representation of Alice's IP address</li>
<li>2 byte port number (unsigned, big endian 2s complement)</li> <li>2 byte port number (unsigned, big endian 2s complement)</li>
<li>4 byte relay tag which Alice can publish (else 0x0)</li> <li>4 byte relay tag which Alice can publish (else 0x0)</li>
<li>40 byte DSA signature of the critical exchanged data, encrypted <li>4 byte timestamp (seconds from the epoch) for use in the DSA
with another layer of encryption using the negotiated sessionKey. signature</li>
The IV is reused here (but with the sessionKey, not the introKey).</li> <li>40 byte DSA signature of the critical exchanged data
(Alice's IP + Alice's port + Bob's IP + Bob's port + Alice's
new relay tag + Bob's signed on time), encrypted with another
layer of encryption using the negotiated sessionKey. The IV
is reused here.</li>
<li>8 bytes padding, encrypted with an additional layer of encryption <li>8 bytes padding, encrypted with an additional layer of encryption
using the negotiated session key as part of the DSA block</li> using the negotiated session key as part of the DSA block</li>
<li>N bytes, currently uninterpreted (later, for challenges)</li> <li>N bytes, currently uninterpreted (later, for challenges)</li>
...@@ -159,17 +163,19 @@ around briefly, to address packet loss and reordering.</p> ...@@ -159,17 +163,19 @@ around briefly, to address packet loss and reordering.</p>
+----+----+----+----+----+----+----+----+ +----+----+----+----+----+----+----+----+
|size| that many byte IP address (4-16) | |size| that many byte IP address (4-16) |
+----+----+----+----+----+----+----+----+ +----+----+----+----+----+----+----+----+
| Port (A)| public relay tag | | | Port (A)| public relay tag | signed
+----+----+----+----+----+----+ | +----+----+----+----+----+----+----+----+
| DSA signature | on time | |
+----+----+ |
| DSA signature |
| | | |
| | | |
| | | |
| +----+----+ | +----+----+----+----+----+----+
| | | | (8 bytes of padding)
+----+----+----+----+----+----+----+----+ +----+----+----+----+----+----+----+----+
(8 bytes of padding) | | | |
+----+----+----+----+----+----+ | +----+----+ |
| arbitrary amount | | arbitrary amount |
| of uninterpreted data | | of uninterpreted data |
. . . . . .
...@@ -180,7 +186,7 @@ around briefly, to address packet loss and reordering.</p> ...@@ -180,7 +186,7 @@ around briefly, to address packet loss and reordering.</p>
<h3><a name="sessionConfirmed">SessionConfirmed (type 2)</a></h3> <h3><a name="sessionConfirmed">SessionConfirmed (type 2)</a></h3>
<table border="1"> <table border="1">
<tr><td align="right" valign="top"><b>Peer:</b></td> <tr><td align="right" valign="top"><b>Peer:</b></td>
<td>Bob to Alice</td></tr> <td>Alice to Bob</td></tr>
<tr><td align="right" valign="top"><b>Data:</b></td> <tr><td align="right" valign="top"><b>Data:</b></td>
<td><ul> <td><ul>
<li>1 byte identity fragment info:<pre> <li>1 byte identity fragment info:<pre>
...@@ -188,8 +194,11 @@ bits 0-3: current identity fragment # ...@@ -188,8 +194,11 @@ bits 0-3: current identity fragment #
bits 4-7: total identity fragments</pre></li> bits 4-7: total identity fragments</pre></li>
<li>N byte fragment of Alice's identity, sent over a number <li>N byte fragment of Alice's identity, sent over a number
of messages.</li> of messages.</li>
<li>on the last identity fragment, the last 40 bytes contain <li>on the last identity fragment, the signed on time is
the DSA signature of the critical exchanged data</li> included after the identity fragment, and the last 40
bytes contain the DSA signature of the critical exchanged
data (Alice's IP + Alice's port + Bob's IP + Bob's port
+ Alice's new relay key + Alice's signed on time)</li>
</ul></td></tr> </ul></td></tr>
<tr><td align="right" valign="top"><b>Key used:</b></td> <tr><td align="right" valign="top"><b>Key used:</b></td>
<td>sessionKey</td></tr> <td>sessionKey</td></tr>
...@@ -213,6 +222,8 @@ bits 4-7: total identity fragments</pre></li> ...@@ -213,6 +222,8 @@ bits 4-7: total identity fragments</pre></li>
. . . . . .
| | | |
+----+----+----+----+----+----+----+----+ +----+----+----+----+----+----+----+----+
| signed on time | |
+----+----+----+----+ |
| arbitrary amount of uninterpreted | | arbitrary amount of uninterpreted |
| data, up from the end of the | | data, up from the end of the |
| identity key to 40 bytes prior to | | identity key to 40 bytes prior to |
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Base32 Address: [http://7qeve4v2chmjdqlwpa3vl7aojf3nodbku7vepnjwrsxljzqipz6a.b32.i2p] Onion Address: [http://47ggr2fa3vnwfyhvgskzdmr3i32eijwymxohtxsls45dulmriwxszjad.onion]