Skip to content
Snippets Groups Projects
Forked from briar / briar
5020 commits behind the upstream repository.
  • Torsten Grote's avatar
    fc5a7290
    Calculate and verify signature and MAC for Introduction ACKs · fc5a7290
    Torsten Grote authored
    Before the introducee sends her ACK,
    she derives a master key from the ephemeral shared secret as before.
    
    Two nonces and a MAC key are then derived from the master key.
    The local introducee signs one of the nonces and calculates a MAC
    over her own identity public key, ephemeral public key,
    transport properties and timestamp.
    The local introducee includes the signature and MAC in her ACK.
    
    On receiving the remote introducee's ACK,
    the local introducee verifies the signature and MAC.
    Should the verification fail, an ABORT is sent to the introducer and
    the remote introducee that was added as inactive is deleted again.
    Verified
    fc5a7290
    History
    Calculate and verify signature and MAC for Introduction ACKs
    Torsten Grote authored
    Before the introducee sends her ACK,
    she derives a master key from the ephemeral shared secret as before.
    
    Two nonces and a MAC key are then derived from the master key.
    The local introducee signs one of the nonces and calculates a MAC
    over her own identity public key, ephemeral public key,
    transport properties and timestamp.
    The local introducee includes the signature and MAC in her ACK.
    
    On receiving the remote introducee's ACK,
    the local introducee verifies the signature and MAC.
    Should the verification fail, an ABORT is sent to the introducer and
    the remote introducee that was added as inactive is deleted again.
IntroductionConstants.java 2.14 KiB