diff options
Diffstat (limited to 'spec/rend-spec/encrypting-user-data.md')
| -rw-r--r-- | spec/rend-spec/encrypting-user-data.md | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/spec/rend-spec/encrypting-user-data.md b/spec/rend-spec/encrypting-user-data.md new file mode 100644 index 0000000..f3ce6f7 --- /dev/null +++ b/spec/rend-spec/encrypting-user-data.md @@ -0,0 +1,12 @@ +<a id="rend-spec-v3.txt-5"></a> + +# Encrypting data between client and host + +A successfully completed handshake, as embedded in the +INTRODUCE/RENDEZVOUS cells, gives the client and hidden service host +a shared set of keys Kf, Kb, Df, Db, which they use for sending +end-to-end traffic encryption and authentication as in the regular +Tor relay encryption protocol, applying encryption with these keys +before other encryption, and decrypting with these keys before other +decryption. The client encrypts with Kf and decrypts with Kb; the +service host does the opposite. |