Re: [cryptography] cjdns review

2012-10-05 Thread Jonas Wielicki
On 05.10.2012 10:58, Guus Sliepen wrote: > I found a benchmark here: > https://github.com/cjdelisle/cjdns/blob/master/rfcs/benchmark.txt > > So it seems that is not as slow as I suspected: it can forward packets at a > rate of 7 Gbit/s on an Opteron 6128. I think you have misread. The benchmark

Re: [cryptography] cjdns review

2012-10-05 Thread Eugen Leitl
On Fri, Oct 05, 2012 at 10:58:40AM +0200, Guus Sliepen wrote: > > 1. Measure. Don't speculate. > > I found a benchmark here: > https://github.com/cjdelisle/cjdns/blob/master/rfcs/benchmark.txt > > So it seems that is not as slow as I suspected: it can forward packets at a > rate of 7 Gbit/s on

Re: [cryptography] cjdns review

2012-10-05 Thread Guus Sliepen
On Fri, Oct 05, 2012 at 07:31:24AM -, D. J. Bernstein wrote: > Guus Sliepen writes: > > Then these ephemeral keys will be used to encrypt the real data > > packets, but again using crypto_box(). That means asymmetric crypto is > > used for every packet, which makes it VERY slow. > > 1. Measur

Re: [cryptography] cjdns review

2012-10-05 Thread D. J. Bernstein
Guus Sliepen writes: > Then these ephemeral keys will be used to encrypt the real data > packets, but again using crypto_box(). That means asymmetric crypto is > used for every packet, which makes it VERY slow. 1. Measure. Don't speculate. 2. The public-key operations are actually quite fast. For

Re: [cryptography] cjdns review

2012-10-04 Thread David McGrew (mcgrew)
On 10/4/12 4:45 PM, "Guus Sliepen" wrote: >On Thu, Oct 04, 2012 at 02:37:53PM +0200, Eugen Leitl wrote: > >> I've recently become interested in cjdns >>http://en.wikipedia.org/wiki/Cjdns >> which apparently used NaCl in UDP over tun when tunneling. >> >> I'm not aware of any review of the enti

Re: [cryptography] cjdns review

2012-10-04 Thread Natanael
AFAIK the key is just generated once and then hashes are generated in two rounds, if it is 0xFC at the first try it's done, otherwise it runs more checksum rounds in groups of two. Den 4 okt 2012 22:55 skrev "Guus Sliepen" : > On Thu, Oct 04, 2012 at 02:37:53PM +0200, Eugen Leitl wrote: > > > I've

Re: [cryptography] cjdns review

2012-10-04 Thread Guus Sliepen
On Thu, Oct 04, 2012 at 02:37:53PM +0200, Eugen Leitl wrote: > I've recently become interested in cjdns http://en.wikipedia.org/wiki/Cjdns > which apparently used NaCl in UDP over tun when tunneling. > > I'm not aware of any review of the entire system, including > key generation etc. Disclaime

[cryptography] cjdns review

2012-10-04 Thread Eugen Leitl
I've recently become interested in cjdns http://en.wikipedia.org/wiki/Cjdns which apparently used NaCl in UDP over tun when tunneling. I'm not aware of any review of the entire system, including key generation etc. Has this been done yet? Thanks. ___