* Michael Rogers <m.rogers at cs.ucl.ac.uk> [2007-11-08 02:25:14]: > Florent Daigni?re wrote: > > PS: it would be associated to a dedicate pastebin where people would be > > given instructions on how to publish their references. > > Now that JFK's been implemented, would it be possible to avoid pastebins > by reducing the amount of information in the ref? If all the > cryptographic parameters (including the complete public keys) are > established and verified during JFK, does the ref need to contain > anything apart from an IP address, port number and key fingerprint? >
We haven't implemented an anonymous connection protocol. JFK assumes that there is a certificate chain or something we could use to verify who we are talking to... In our case it's the crypto. parameters we have in noderefs: We need them on darknet. Moreover our implementation of JFK features identity protection of both the responder and the initiator (as we are on darknet we know who we are "talking" to anyway). We could reduce the size of noderefs to the expense of flexibility... ATM we share a common DSA group... We could get rid of it in noderefs but they would remain be too big for beeing exchangeable over the phone. NextGen$ -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: Digital signature URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20071108/f2f52a0f/attachment.pgp>
