openprivacy
/
libricochet-go
Archived
4
3
Fork 2
Code Issues 2 Pull Requests Releases 14 Wiki Activity

Replace default auth-hidden-server with 3DH DAKE #15

New Issue
Closed
opened 2018-07-11 02:38:44 +00:00 by sarah · 1 comment
sarah commented 2018-07-11 02:38:44 +00:00
Owner
Copy Link

Just had a conversation with someone regarding deniability and the way ricochet currently does client authentication in the protocol.

They proposed we replace the current challenge-response protocol (https://github.com/ricochet-im/ricochet/blob/master/doc/protocol.md#authhiddenservice) with a 3DH DAKE - we would then encrypt messages between peers using the derived key.

This would provide offline deniability (not online deniability), and Tor would not break the deniability. An improvement over the current challenge-response protocol which does not provide any kind of deniability.

I will probably implement this as im.ricochet.auth.3dh-dake

Just had a conversation with someone regarding deniability and the way ricochet currently does client authentication in the protocol. They proposed we replace the current challenge-response protocol (https://github.com/ricochet-im/ricochet/blob/master/doc/protocol.md#authhiddenservice) with a 3DH DAKE - we would then encrypt messages between peers using the derived key. This would provide offline deniability (not online deniability), and Tor would not break the deniability. An improvement over the current challenge-response protocol which does not provide any kind of deniability. I will probably implement this as `im.ricochet.auth.3dh-dake`
sarah commented 2018-11-20 20:57:18 +00:00
Author
Owner
Copy Link

Implemented as part of v3onion

Implemented as part of v3onion
sarah closed this issue 2018-11-20 20:57:18 +00:00
This repo is archived. You cannot comment on issues.
No Branch/Tag Specified
Branches Tags
master
replace-extra25519
windows
race
restart-new
restart
v1-define1
v1-define
v1-cleanup
v1-encrypt
v1
module_update
close
module
update_readme
cleanup
remove-v3-contact-request
errmsg
validhostname
test_fix
echobotv3
bugfix
detports
bulbmigration
newnym
v3onions
new_api
v1.0.13
v1.0.12
v1.0.11
v1.0.10
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Labels
Clear labels   
bug

   
duplicate

   
enhancement

   
help wanted

   
invalid

   
question

   
wontfix
No Label
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
sarah
sarah
1 Participants
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: openprivacy/libricochet-go#15
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?