diff options
author | Roger Dingledine <arma@torproject.org> | 2011-10-31 21:18:07 -0400 |
---|---|---|
committer | Roger Dingledine <arma@torproject.org> | 2011-10-31 21:18:07 -0400 |
commit | 2fcc5ca4cba8b80fa6ed8770a3c5533690c3c6f9 (patch) | |
tree | 62c4ec4e4ec6bbaa8e155a0eab5ada7d21bfb292 /proposals/ideas | |
parent | d85f694f89249f4870bd24ad1c64bcb8f1d38d25 (diff) | |
download | torspec-2fcc5ca4cba8b80fa6ed8770a3c5533690c3c6f9.tar.gz torspec-2fcc5ca4cba8b80fa6ed8770a3c5533690c3c6f9.zip |
read sec 6 also
did not check pseudocode for well-formedness
Diffstat (limited to 'proposals/ideas')
-rw-r--r-- | proposals/ideas/xxx-new-crypto-sketch.txt | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/proposals/ideas/xxx-new-crypto-sketch.txt b/proposals/ideas/xxx-new-crypto-sketch.txt index 9fbdbd2..ab2e987 100644 --- a/proposals/ideas/xxx-new-crypto-sketch.txt +++ b/proposals/ideas/xxx-new-crypto-sketch.txt @@ -645,8 +645,9 @@ Author: Nick Mathewson Otherwise add the entire cell to cells_i, and decrypt it, MAC included, with the stream keyed with Kb[i], IVb[i]. - If no node sent this cell: it's junk and somebody is probably - messing with us! Destroy the circuit. + If no node sent this cell: it's junk and somebody is probably + messing with us! Destroy the circuit. + When the client *sends* a cell outbound to node N: @@ -664,10 +665,10 @@ Author: Nick Mathewson CELL_DATA_LEN-5-MACLEN-len(Data) bytes] Let PAD[i] = the next MACBYTESf[i] bytes from the PRNG keyed - with SEEDf[i], for i in 1...N. + with SEEDf[i], for i in 1...N Let STREAM[i] = the next CELL_DATA_LEN bytes of - the stream keyed by Kf[i],IV[i], for i in 1...N. + the stream keyed by Kf[i],IV[i], for i in 1...N Let PADSEEN[1] == "" @@ -753,7 +754,7 @@ Author: Nick Mathewson "recognized" field. I note in passing that we need at most 9 bits for the length - field, and most 6 bits for the command field, yet we're using a + field, and at most 6 bits for the command field, yet we're using a total of 3 bytes for those 15 bits. That's an opportunity to save another byte. |