- Aug 31, 2011
-
-
akwizgran authored
-
- Aug 19, 2011
-
-
akwizgran authored
soon as possible, rather than waiting for the next write.
-
akwizgran authored
-
akwizgran authored
-
akwizgran authored
code out into separate classes.
-
akwizgran authored
-
akwizgran authored
vulnerable to traffic analysis can frame their data independently of packet boundaries.
-
akwizgran authored
-
akwizgran authored
-
akwizgran authored
-
akwizgran authored
predefined tags in the protocol and serial components, and "IV" for the encrypted IVs used to identify connections in the transport component.
-
- Aug 18, 2011
-
-
akwizgran authored
authenticate each frame before parsing its contents. Each connection starts with a tag, followed by any number of frames, each starting with the frame number (32 bits) and payload length (16 bits), and ending with a MAC (256 bits). Tags have the following format: 32 bits reserved, 16 bits for the transport ID, 32 bits for the connection number, 32 bits (set to zero in the tag) for the frame number, and 16 bits (set to zero in the tag) for the block number. The tag is encrypted with the tag key in ECB mode. Frame numbers for each connection must start from zero and must be contiguous and strictly increasing. Each frame is encrypted with the frame key in CTR mode, using the plaintext tag with the appropriate frame number to initialise the counter. The maximum frame size is 64 KiB, including header and footer. The maximum amount of data that can be sent over a connection is 2^32 frames - roughly 2^48 bytes, or 8 terabytes, with the maximum frame size of 64 KiB. If that isn't sufficient we can add another 16 bits to the frame counter.
-
akwizgran authored
transport format.
-
- Aug 14, 2011
- Aug 13, 2011
-
-
akwizgran authored
it responds.
-
akwizgran authored
-
akwizgran authored
-
akwizgran authored
allow writers to starve. If this test passes on Java 5 and 6, we can get rid of SynchronizedDatabaseComponent and merge ReadWriteLockDatabaseComponent with DatabaseComponentImpl.
-
akwizgran authored
from PacketReader (which belongs in the transport component).
-
- Aug 12, 2011
-
-
akwizgran authored
encrypting and decrypting packets. Moved the test to the main package since it's an integration test for several components.
-
akwizgran authored
-
akwizgran authored
protocol component to Protocol{Reader,Writer}Factory.
-
akwizgran authored
-
akwizgran authored
fact that the cipher wants to operate a block at a time even though it's in CTR mode.
-
akwizgran authored
-
akwizgran authored
-
akwizgran authored
-
- Aug 11, 2011
-
-
akwizgran authored
by the code that recognises tags. Implemented ConnectionRecogniser (untested).
-
akwizgran authored
encrypted secrets retrieved from the database.
-
akwizgran authored
encryption keys from them (untested).
-
akwizgran authored
-
akwizgran authored
responsible for wrapping/unwrapping them).
-
akwizgran authored
getConnectionWindow() and setConnectionWindow() through the DatabaseComponent interface.
-
akwizgran authored
window.
-
akwizgran authored
-
akwizgran authored
window sliding (untested).
-
akwizgran authored
-