[noise] Extension spec: Signatures

Justin Cormack justin at specialbusservice.com
Mon Feb 18 00:07:07 PST 2019 

Yes that is correct.

Justin


On Mon, 18 Feb 2019 at 07:16, zaki at manian.org <zaki at manian.org> wrote:

> Question:
>
> In regular Noise, a MessageBuffer has spots for 2 tokens ( static dh and
> ephemeral dh) + ciphertext.
>
> In Noise with signatures, you need a MessageBuffer than can have up to 3
> tokens(ephemeral, signing pub key, signature) + ciphertext
>
> Is this correct?
>
> Signal/WhatsApp/Phone: +1650-862-5992
>
>
>
> On Mon, Dec 17, 2018 at 2:17 AM Trevor Perrin <trevp at trevp.net> wrote:
>
>> I started an extension spec for basic signatures:
>>  * sig, sigi, and sigr modifiers
>>  * s1, sig1 tokens (or other numbers, if used in combination with hfs
>> or something else)
>>
>> https://github.com/noiseprotocol/noise_sig_spec/
>>
>> https://github.com/noiseprotocol/noise_sig_spec/blob/master/output/noise_sig.pdf
>>
>> This follows the hfs spec in using numbered suffixes to refer to
>> different types of public-key algorithms that are introduced by the
>> pattern modifiers:
>>
>> XXhfs+sig_25519+NewHope+Ed25519_AESGCM_SHA256:
>>  -> e, e1
>>  <- e, ekem1, s2, sig2
>>  -> s2, sig2
>>
>>
>> This spec lists 23 new patterns applying the sig modifiers to the
>> fundamental+defered patterns.  These signatures modifiers don't
>> coexist with any ss/noss modifiers, but should combine easily with the
>> hfs modifier (as above).
>>
>>
>> Anyways, this gives us 3 extension specs related to patterns:
>>  * ss (adding and removing ss token)
>>  * hfs (adding post-quantum KEMs for more forward-secrecy)
>>  * sig (adding signatures for authentication)
>>
>> I think that's a good amount of handshake-pattern stuff to discuss at
>> RWC and try to finalize in the next few months.
>>
>> (Aside from the pattern work, I'd like to make progress on the SHO
>> idea, and after that on NoiseSocket/NoiseLingo/NLS).
>>
>> Trevor
>> _______________________________________________
>> Noise mailing list
>> Noise at moderncrypto.org
>> https://moderncrypto.org/mailman/listinfo/noise
>>
> _______________________________________________
> Noise mailing list
> Noise at moderncrypto.org
> https://moderncrypto.org/mailman/listinfo/noise
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/noise/attachments/20190218/5ebef2b7/attachment.html>

More information about the Noise mailing list