[curves] Simple Peer-to-Peer Security (SPTPS)
bascule at gmail.com
Tue Apr 29 21:46:16 PDT 2014
This is a minimalist transport encryption protocol with forward secrecy,
based on Curve25519 and ChaCha20+Poly1305
The basic protocol:
1) Key Exchange (KEX): create a random D-H key, send pubkey + nonce
2) Signature (SIG): combine yours and their messages and compute an "ECDSA"
signature (one might assume EdDSA here but it's unspecified)
3) Acknowledge (ACK): Compute D-H shared secret, and derive a session key
via a KDF with both nonces + "application specific label", then send an
empty packet (CurveCP might preload the first message here)
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Curves