[curves] Simple Peer-to-Peer Security (SPTPS)

Tony Arcieri bascule at gmail.com
Tue Apr 29 21:46:16 PDT 2014

This is a minimalist transport encryption protocol with forward secrecy,
based on Curve25519 and ChaCha20+Poly1305


The basic protocol:

1) Key Exchange (KEX): create a random D-H key, send pubkey + nonce
2) Signature (SIG): combine yours and their messages and compute an "ECDSA"
signature (one might assume EdDSA here but it's unspecified)
3) Acknowledge (ACK): Compute D-H shared secret, and derive a session key
via a KDF with both nonces + "application specific label", then send an
empty packet (CurveCP might preload the first message here)

Seems interesting

Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/curves/attachments/20140429/756842ce/attachment.html>

More information about the Curves mailing list