Matthew Toseland wrote: > The pubkey itself for an SSK cannot be encrypted as a node forwarding an SSK > has to be able to verify the signature. The data of course is encrypted... > but if we use the same pubkey for connection setup, we are giving away a lot > of information.
True. We could use the hash of the entire ARK key (including the secret part) to generate the obfuscation key - that way a node handling the ARK request won't be able to de-obfuscate the handshake. Cheers, Michael _______________________________________________ Devl mailing list Devl@freenetproject.org http://emu.freenetproject.org/cgi-bin/mailman/listinfo/devl
