[noise] Extension spec: Signatures
justin at specialbusservice.com
Mon Feb 18 00:07:07 PST 2019
Yes that is correct.
On Mon, 18 Feb 2019 at 07:16, zaki at manian.org <zaki at manian.org> wrote:
> In regular Noise, a MessageBuffer has spots for 2 tokens ( static dh and
> ephemeral dh) + ciphertext.
> In Noise with signatures, you need a MessageBuffer than can have up to 3
> tokens(ephemeral, signing pub key, signature) + ciphertext
> Is this correct?
> Signal/WhatsApp/Phone: +1650-862-5992
> On Mon, Dec 17, 2018 at 2:17 AM Trevor Perrin <trevp at trevp.net> wrote:
>> I started an extension spec for basic signatures:
>> * sig, sigi, and sigr modifiers
>> * s1, sig1 tokens (or other numbers, if used in combination with hfs
>> or something else)
>> This follows the hfs spec in using numbered suffixes to refer to
>> different types of public-key algorithms that are introduced by the
>> pattern modifiers:
>> -> e, e1
>> <- e, ekem1, s2, sig2
>> -> s2, sig2
>> This spec lists 23 new patterns applying the sig modifiers to the
>> fundamental+defered patterns. These signatures modifiers don't
>> coexist with any ss/noss modifiers, but should combine easily with the
>> hfs modifier (as above).
>> Anyways, this gives us 3 extension specs related to patterns:
>> * ss (adding and removing ss token)
>> * hfs (adding post-quantum KEMs for more forward-secrecy)
>> * sig (adding signatures for authentication)
>> I think that's a good amount of handshake-pattern stuff to discuss at
>> RWC and try to finalize in the next few months.
>> (Aside from the pattern work, I'd like to make progress on the SHO
>> idea, and after that on NoiseSocket/NoiseLingo/NLS).
>> Noise mailing list
>> Noise at moderncrypto.org
> Noise mailing list
> Noise at moderncrypto.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Noise