diff options
author | ng0 <ng0@n0.is> | 2017-11-23 16:09:31 +0000 |
---|---|---|
committer | ng0 <ng0@n0.is> | 2017-11-23 16:09:31 +0000 |
commit | d387ba039e99d07a50b3d7ffffc7e8a2e1abd938 (patch) | |
tree | c50eb32f10da7c03a6b28b266f61d8eda44d080d /doc/documentation | |
parent | ab80115e823a056f760b0bbd916be56e2711aa8d (diff) | |
download | gnunet-d387ba039e99d07a50b3d7ffffc7e8a2e1abd938.tar.gz gnunet-d387ba039e99d07a50b3d7ffffc7e8a2e1abd938.zip |
definitions.
Diffstat (limited to 'doc/documentation')
-rw-r--r-- | doc/documentation/chapters/philosophy.texi | 9 |
1 files changed, 3 insertions, 6 deletions
diff --git a/doc/documentation/chapters/philosophy.texi b/doc/documentation/chapters/philosophy.texi index e5c63339e..116991a6a 100644 --- a/doc/documentation/chapters/philosophy.texi +++ b/doc/documentation/chapters/philosophy.texi | |||
@@ -161,15 +161,12 @@ signed using ECDSA (@uref{http://en.wikipedia.org/wiki/ECDSA, ECDSA}). | |||
161 | The shared secret from ECDHE is used to create a pair of session keys | 161 | The shared secret from ECDHE is used to create a pair of session keys |
162 | @c FIXME: LOng word for HKDF | 162 | @c FIXME: LOng word for HKDF |
163 | (using HKDF) which are then used to encrypt the communication between the | 163 | (using HKDF) which are then used to encrypt the communication between the |
164 | @c FIXME: AES | 164 | two peers using both 256-bit AES (Advanced Encryption Standard) |
165 | two peers using both 256-bit AES | ||
166 | @c FIXME: Twofish | ||
167 | and 256-bit Twofish (with independently derived secret keys). | 165 | and 256-bit Twofish (with independently derived secret keys). |
168 | As only the two participating hosts know the shared secret, this | 166 | As only the two participating hosts know the shared secret, this |
169 | authenticates each packet | 167 | authenticates each packet |
170 | @c FIXME SHA. | 168 | without requiring signatures each time. GNUnet uses SHA-512 |
171 | without requiring signatures each time. GNUnet uses SHA-512 hash codes to | 169 | (Secure Hash Algorithm) hash codes to verify the integrity of messages. |
172 | verify the integrity of messages. | ||
173 | 170 | ||
174 | In GNUnet, the identity of a host is its public key. For that reason, | 171 | In GNUnet, the identity of a host is its public key. For that reason, |
175 | @c FIXME: is it clear to the average reader what a man-in-the-middle | 172 | @c FIXME: is it clear to the average reader what a man-in-the-middle |