From a49c5e61f7016294c8f4be734bb0a2ce2f1b7811 Mon Sep 17 00:00:00 2001
From: akwizgran <michael@briarproject.org>
Date: Fri, 4 Oct 2019 12:51:02 +0100
Subject: [PATCH] Clarify proof of ownership in BHP.

---
 protocols/BHP.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/protocols/BHP.md b/protocols/BHP.md
index 3a08236..58c7357 100644
--- a/protocols/BHP.md
+++ b/protocols/BHP.md
@@ -107,9 +107,9 @@ If the adversary did not intercept the prior exchange of long-term public keys a
 
 ### 2.4 Proof of Ownership
 
-The master key depends on both peers' long-term and ephemeral public keys, as well as on shared secrets that can only be derived by the owners of those keys. Each peer sends a message authentication code to prove that it has derived the correct master key, which in turn proves that it owns the long-term and ephemeral public keys received by the other peer, and has received the long-term and ephemeral public keys sent by the other peer.
+The master key depends on both peers' long-term and ephemeral public keys, as well as on shared secrets that can only be derived by the owners of those keys. Each peer sends proof that it has derived the correct master key, which in turn proves that it owns the long-term and ephemeral public keys received by the other peer, and has received the long-term and ephemeral public keys sent by the other peer.
 
-Each peer calculates its own message authentication code and the code it expects to receive from the other peer. If the code received from the other peer differs from the expected code then the peer must abort the protocol.
+Each peer calculates its own proof and the proof it expects to receive from the other peer. If the proof received from the other peer differs from the expected proof then the peer must abort the protocol.
 
 - alice\_proof = MAC(master\_key, "org.briarproject.bramble.handshake/ALICE\_PROOF")
 - bob\_proof = MAC(master\_key, "org.briarproject.bramble.handshake/BOB\_PROOF")
-- 
GitLab