From 694c6bb9a8c5aeb0353eb4981c776c7c08285d96 Mon Sep 17 00:00:00 2001
From: Sarah Jamie Lewis <sarah@openprivacy.ca>
Date: Thu, 2 Jul 2020 14:07:37 -0700
Subject: [PATCH] tapir apps

---
 src/tapir.md | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/src/tapir.md b/src/tapir.md
index ecb135f..a2d0002 100644
--- a/src/tapir.md
+++ b/src/tapir.md
@@ -19,6 +19,34 @@ together, e.g. authentication depends on a shared cryptographic transcript
 , and the main [cwtch](./cwtch.md) peer app is based on the authentication
 application.
 
+
+## Applications
+
+### Transcript App
+
+**Dependencies:** None
+
+Initializes a [Merlin](https://merlin.cool)-based cryptographic transcript that
+ can be used as the basis of higher level commitment-based protocols
+ 
+ Transcript app will panic if an app ever tries to overwrite an existing
+  transcript with a new one (enforcing the rule that a session is based on
+  one, and only one, transcript.)
+
+### Authentication App
+
+**Dependencies:** Transcript App
+
+Engages in an ephemeral triple-diffie-hellman handshake to derive a unique,
+authenticated session key.
+
+### Token App
+
+**Dependencies:** Transcript App
+
+Allows the client to obtain signed, blinded tokens for use in another
+ application.
+
 ## Known Risks  
 
 ### Impersonation of Peers