1 files changed, 55 insertions, 131 deletions
diff --git a/doc/handbook/chapters/user.texi b/doc/handbook/chapters/user.texi
index 1c78e8f48..42f37c2ea 100644
--- a/doc/handbook/chapters/user.texi
+++ b/doc/handbook/chapters/user.texi
@@ -984,69 +984,55 @@ typically includes the mime-type, description, a filename and
 other meta information, and possibly even the full original file
 (if it was small).
-@node Pseudonyms
+@node Egos
-@subsubsection Pseudonyms
+@subsubsection Egos
+When sharing files, it is sometimes desirable to build a reputation as
+a source for quality information.  With egos, publishers can
+(cryptographically) sign files, thereby demonstrating that various
+files were published by the same entity.  An ego thus allows users to
+link different publication events, thereby deliberately reducing
+anonymity to pseudonymity.
-@b{Please note that the text in this subsection is outdated and needs}
+Egos used in GNUnet's file-sharing for such pseudonymous publishing
-@b{to be rewritten for version 0.10!}
+also correspond to the egos used to identify and sign zones in the
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
+GNU Name System.  However, if the same ego is used for file-sharing
+and for a GNS zone, this will weaken the privacy assurances provided
+by the anonymous file-sharing protocol.
-Pseudonyms in GNUnet are essentially public-private (RSA) key pairs
+Note that an ego is NOT bound to a GNUnet peer. There can be multiple
-that allow a GNUnet user to maintain an identity (which may or may not
+egos for a single user, and users could (theoretically) share
-be detached from their real-life identity). GNUnet's pseudonyms are not
+the private keys of an ego by copying the respective private keys.
-file-sharing specific --- and they will likely be used by many GNUnet
-applications where a user identity is required.
-Note that a pseudonym is NOT bound to a GNUnet peer. There can be multiple
-pseudonyms for a single user, and users could (theoretically) share the
-private pseudonym keys (currently only out-of-band by knowing which files
-to copy around).
 @node Namespaces
 @subsubsection Namespaces
+A namespace is a set of files that were signed by the same ego.
+Today, namespaces are implemented independently of GNS zones, but
+in the future we plan to merge the two such that a GNS zone can
+basically contain files using a file-sharing specific record type.
-@b{Please note that the text in this subsection is outdated and needs}
+Files (or directories) that have been signed and placed into a
-@b{to be rewritten for version 0.10!}
+namespace can be updated. Updates are identified as authentic if the
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
+same secret key was used to sign the update. 
-A namespace is a set of files that were signed by the same pseudonym.
-Files (or directories) that have been signed and placed into a namespace
-can be updated. Updates are identified as authentic if the same secret
-key was used to sign the update. Namespaces are also useful to establish
-a reputation, since all of the content in the namespace comes from the
-same entity (which does not have to be the same person).
 @node Advertisements
 @subsubsection Advertisements
-@b{Please note that the text in this subsection is outdated and needs}
-@b{to be rewritten for version 0.10!}
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
 Advertisements are used to notify other users about the existence of a
-namespace. Advertisements are propagated using the normal keyword search.
+namespace. Advertisements are propagated using the normal keyword
-When an advertisement is received (in response to a search), the namespace
+search.  When an advertisement is received (in response to a search),
-is added to the list of namespaces available in the namespace-search
+the namespace is added to the list of namespaces available in the
-dialogs of gnunet-fs-gtk and printed by @code{gnunet-identity}. Whenever a
+namespace-search dialogs of gnunet-fs-gtk and printed by
-namespace is created, an appropriate advertisement can be generated.
+@code{gnunet-identity}. Whenever a namespace is created, an
-The default keyword for the advertising of namespaces is "namespace".
+appropriate advertisement can be generated.  The default keyword for
+the advertising of namespaces is "namespace".
-Note that GNUnet differentiates between your pseudonyms (the identities
-that you control) and namespaces. If you create a pseudonym, you will
-not automatically see the respective namespace. You first have to create
-an advertisement for the namespace and find it using keyword
-search --- even for your own namespaces. The @command{gnunet-identity}
-tool is currently responsible for both managing pseudonyms and namespaces.
-This will likely change in the future to reduce the potential for
-confusion.
 @node Anonymity level
 @subsubsection Anonymity level
 The anonymity level determines how hard it should be for an adversary to
 determine the identity of the publisher or the searcher/downloader. An
 anonymity level of zero means that anonymity is not required. The default
@@ -1066,10 +1052,10 @@ delays traffic.
 While higher anonymity levels may offer better privacy, they can also
 significantly hurt performance.
 @node Content Priority
 @subsubsection Content Priority
 Depending on the peer's configuration, GNUnet peers migrate content
 between peers. Content in this sense are individual blocks of a file,
 not necessarily entire files. When peers run out of space (due to
@@ -1083,10 +1069,10 @@ lowest priority. The priority of a block is decided by its popularity
 published locally, the base-priority that was specified by the user
 when the block was published initially.
 @node Replication
 @subsubsection Replication
 When peers migrate content to other systems, the replication level
 of a block is used to decide which blocks need to be migrated most
 urgently. GNUnet will always push the block with the highest
@@ -1098,99 +1084,37 @@ selection is simply random.
 @node Namespace Management
 @subsection Namespace Management
+The @code{gnunet-identity} tool can be used to create egos.
-@b{Please note that the text in this subsection is outdated and needs}
+By default, @code{gnunet-identity -D} simply
-@b{to be rewritten for version 0.10!}
+lists all locally available egos.
-The @code{gnunet-identity} tool can be used to create pseudonyms and
-to advertise namespaces. By default, @code{gnunet-identity -D} simply
-lists all locally available pseudonyms.
 @menu
-* Creating Pseudonyms::
+* Creating Egos::
-* Deleting Pseudonyms::
+* Deleting Egos::
-* Advertising namespaces::
-* Namespace names::
-* Namespace root::
 @end menu
-@node Creating Pseudonyms
+@node Creating Egos
-@subsubsection Creating Pseudonyms
+@subsubsection Creating Egos
-@b{Please note that the text in this subsection is outdated and needs}
-@b{to be rewritten for version 0.10!}
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
-With the @command{-C NICK} option it can also be used to
-create a new pseudonym. A pseudonym is the virtual identity
-of the entity in control of a namespace. Anyone can create
-any number of pseudonyms. Note that creating a pseudonym can
-take a few minutes depending on the performance of the machine
-used.
-@node Deleting Pseudonyms
-@subsubsection Deleting Pseudonyms
-@b{Please note that the text in this subsection is outdated and needs}
-@b{to be rewritten for version 0.10!}
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
-With the @command{-D NICK} option pseudonyms can be deleted.
-Once the pseudonym has been deleted it is impossible to add
-content to the corresponding namespace. Deleting the
-pseudonym does not make the namespace or any content in it
-unavailable.
-@node Advertising namespaces
-@subsubsection Advertising namespaces
-@b{Please note that the text in this subsection is outdated and needs}
-@b{to be rewritten for version 0.10!}
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
-Each namespace is associated with meta-data that describes
-the namespace. This meta-data is provided by the user at
-the time that the namespace is advertised. Advertisements
-are published under keywords so that they can be found using
-normal keyword-searches. This way, users can learn about new
-namespaces without relying on out-of-band communication or directories.
-A suggested keyword to use for all namespaces is simply "namespace".
-When a keyword-search finds a namespace advertisement,
-it is automatically stored in a local list of known namespaces.
-Users can then associate a rank with the namespace to remember
-the quality of the content found in it.
-@node Namespace names
-@subsubsection Namespace names
+With the @command{-C NICK} option it can also be used to create a new
+ego. An ego is the virtual identity of the entity in control of a
+namespace or GNS zone. Anyone can create any number of egos.  The
+provided NICK name automatically corresponds to a GNU Name System
+domain name.  Thus, henceforth name resolution for any name ending in
+``.NICK'' will use the NICK's zone.  You should avoid using NICKs that
+collide with well-known DNS names.
-@b{Please note that the text in this subsection is outdated and needs}
+@node Deleting Egos
-@b{to be rewritten for version 0.10!}
+@subsubsection Deleting Egos
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
-While the namespace is uniquely identified by its ID, another way
+With the @command{-D NICK} option egos can be deleted.  Once the ego
-to refer to the namespace is to use the NICKNAME.
+has been deleted it is impossible to add content to the corresponding
-The NICKNAME can be freely chosen by the creator of the namespace and
+namespace or zone. However, the existing GNS zone data is currently
-hence conflicts are possible. If a GNUnet client learns about more
+not dropped. This may change in the future.
-than one namespace using the same NICKNAME, the ID is appended
-to the NICKNAME to get a unique identifier.
-@node Namespace root
-@subsubsection Namespace root
-@b{Please note that the text in this subsection is outdated and needs}
-@b{to be rewritten for version 0.10!}
-@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
-An item of particular interest in the namespace advertisement is
+Deleting the pseudonym does not make the namespace or any content in
-the ROOT. The ROOT is the identifier of a designated entry in the
+it unavailable.
-namespace. The idea is that the ROOT can be used to advertise an
-entry point to the content of the namespace.
 @node File-Sharing URIs
 @subsection File-Sharing URIs

diff --git a/doc/handbook/chapters/user.texi b/doc/handbook/chapters/user.texi index 1c78e8f48..42f37c2ea 100644 --- a/doc/handbook/chapters/user.texi +++ b/doc/handbook/chapters/user.texi
@@ -984,69 +984,55 @@ typically includes the mime-type, description, a filename and
984	other meta information, and possibly even the full original file	984	other meta information, and possibly even the full original file
985	(if it was small).	985	(if it was small).
986		986
987	@node Pseudonyms	987	@node Egos
988	@subsubsection Pseudonyms	988	@subsubsection Egos
989		989
		990	When sharing files, it is sometimes desirable to build a reputation as
		991	a source for quality information. With egos, publishers can
		992	(cryptographically) sign files, thereby demonstrating that various
		993	files were published by the same entity. An ego thus allows users to
		994	link different publication events, thereby deliberately reducing
		995	anonymity to pseudonymity.
990		996
991	@b{Please note that the text in this subsection is outdated and needs}	997	Egos used in GNUnet's file-sharing for such pseudonymous publishing
992	@b{to be rewritten for version 0.10!}	998	also correspond to the egos used to identify and sign zones in the
993	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}	999	GNU Name System. However, if the same ego is used for file-sharing
		1000	and for a GNS zone, this will weaken the privacy assurances provided
		1001	by the anonymous file-sharing protocol.
994		1002
995	Pseudonyms in GNUnet are essentially public-private (RSA) key pairs	1003	Note that an ego is NOT bound to a GNUnet peer. There can be multiple
996	that allow a GNUnet user to maintain an identity (which may or may not	1004	egos for a single user, and users could (theoretically) share
997	be detached from their real-life identity). GNUnet's pseudonyms are not	1005	the private keys of an ego by copying the respective private keys.
998	file-sharing specific --- and they will likely be used by many GNUnet
999	applications where a user identity is required.
1000		1006
1001	Note that a pseudonym is NOT bound to a GNUnet peer. There can be multiple
1002	pseudonyms for a single user, and users could (theoretically) share the
1003	private pseudonym keys (currently only out-of-band by knowing which files
1004	to copy around).
1005		1007
1006	@node Namespaces	1008	@node Namespaces
1007	@subsubsection Namespaces	1009	@subsubsection Namespaces
1008		1010
		1011	A namespace is a set of files that were signed by the same ego.
		1012	Today, namespaces are implemented independently of GNS zones, but
		1013	in the future we plan to merge the two such that a GNS zone can
		1014	basically contain files using a file-sharing specific record type.
1009		1015
1010	@b{Please note that the text in this subsection is outdated and needs}	1016	Files (or directories) that have been signed and placed into a
1011	@b{to be rewritten for version 0.10!}	1017	namespace can be updated. Updates are identified as authentic if the
1012	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}	1018	same secret key was used to sign the update.
1013
1014	A namespace is a set of files that were signed by the same pseudonym.
1015	Files (or directories) that have been signed and placed into a namespace
1016	can be updated. Updates are identified as authentic if the same secret
1017	key was used to sign the update. Namespaces are also useful to establish
1018	a reputation, since all of the content in the namespace comes from the
1019	same entity (which does not have to be the same person).
1020		1019
1021	@node Advertisements	1020	@node Advertisements
1022	@subsubsection Advertisements	1021	@subsubsection Advertisements
1023		1022
1024
1025	@b{Please note that the text in this subsection is outdated and needs}
1026	@b{to be rewritten for version 0.10!}
1027	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1028
1029	Advertisements are used to notify other users about the existence of a	1023	Advertisements are used to notify other users about the existence of a
1030	namespace. Advertisements are propagated using the normal keyword search.	1024	namespace. Advertisements are propagated using the normal keyword
1031	When an advertisement is received (in response to a search), the namespace	1025	search. When an advertisement is received (in response to a search),
1032	is added to the list of namespaces available in the namespace-search	1026	the namespace is added to the list of namespaces available in the
1033	dialogs of gnunet-fs-gtk and printed by @code{gnunet-identity}. Whenever a	1027	namespace-search dialogs of gnunet-fs-gtk and printed by
1034	namespace is created, an appropriate advertisement can be generated.	1028	@code{gnunet-identity}. Whenever a namespace is created, an
1035	The default keyword for the advertising of namespaces is "namespace".	1029	appropriate advertisement can be generated. The default keyword for
1036		1030	the advertising of namespaces is "namespace".
1037	Note that GNUnet differentiates between your pseudonyms (the identities	1031
1038	that you control) and namespaces. If you create a pseudonym, you will
1039	not automatically see the respective namespace. You first have to create
1040	an advertisement for the namespace and find it using keyword
1041	search --- even for your own namespaces. The @command{gnunet-identity}
1042	tool is currently responsible for both managing pseudonyms and namespaces.
1043	This will likely change in the future to reduce the potential for
1044	confusion.
1045		1032
1046	@node Anonymity level	1033	@node Anonymity level
1047	@subsubsection Anonymity level	1034	@subsubsection Anonymity level
1048		1035
1049
1050	The anonymity level determines how hard it should be for an adversary to	1036	The anonymity level determines how hard it should be for an adversary to
1051	determine the identity of the publisher or the searcher/downloader. An	1037	determine the identity of the publisher or the searcher/downloader. An
1052	anonymity level of zero means that anonymity is not required. The default	1038	anonymity level of zero means that anonymity is not required. The default
@@ -1066,10 +1052,10 @@ delays traffic.
1066	While higher anonymity levels may offer better privacy, they can also	1052	While higher anonymity levels may offer better privacy, they can also
1067	significantly hurt performance.	1053	significantly hurt performance.
1068		1054
		1055
1069	@node Content Priority	1056	@node Content Priority
1070	@subsubsection Content Priority	1057	@subsubsection Content Priority
1071		1058
1072
1073	Depending on the peer's configuration, GNUnet peers migrate content	1059	Depending on the peer's configuration, GNUnet peers migrate content
1074	between peers. Content in this sense are individual blocks of a file,	1060	between peers. Content in this sense are individual blocks of a file,
1075	not necessarily entire files. When peers run out of space (due to	1061	not necessarily entire files. When peers run out of space (due to
@@ -1083,10 +1069,10 @@ lowest priority. The priority of a block is decided by its popularity
1083	published locally, the base-priority that was specified by the user	1069	published locally, the base-priority that was specified by the user
1084	when the block was published initially.	1070	when the block was published initially.
1085		1071
		1072
1086	@node Replication	1073	@node Replication
1087	@subsubsection Replication	1074	@subsubsection Replication
1088		1075
1089
1090	When peers migrate content to other systems, the replication level	1076	When peers migrate content to other systems, the replication level
1091	of a block is used to decide which blocks need to be migrated most	1077	of a block is used to decide which blocks need to be migrated most
1092	urgently. GNUnet will always push the block with the highest	1078	urgently. GNUnet will always push the block with the highest
@@ -1098,99 +1084,37 @@ selection is simply random.
1098	@node Namespace Management	1084	@node Namespace Management
1099	@subsection Namespace Management	1085	@subsection Namespace Management
1100		1086
1101		1087	The @code{gnunet-identity} tool can be used to create egos.
1102	@b{Please note that the text in this subsection is outdated and needs}	1088	By default, @code{gnunet-identity -D} simply
1103	@b{to be rewritten for version 0.10!}	1089	lists all locally available egos.
1104
1105	The @code{gnunet-identity} tool can be used to create pseudonyms and
1106	to advertise namespaces. By default, @code{gnunet-identity -D} simply
1107	lists all locally available pseudonyms.
1108		1090
1109		1091
1110	@menu	1092	@menu
1111	* Creating Pseudonyms::	1093	* Creating Egos::
1112	* Deleting Pseudonyms::	1094	* Deleting Egos::
1113	* Advertising namespaces::
1114	* Namespace names::
1115	* Namespace root::
1116	@end menu	1095	@end menu
1117		1096
1118	@node Creating Pseudonyms	1097	@node Creating Egos
1119	@subsubsection Creating Pseudonyms	1098	@subsubsection Creating Egos
1120
1121
1122	@b{Please note that the text in this subsection is outdated and needs}
1123	@b{to be rewritten for version 0.10!}
1124	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1125
1126	With the @command{-C NICK} option it can also be used to
1127	create a new pseudonym. A pseudonym is the virtual identity
1128	of the entity in control of a namespace. Anyone can create
1129	any number of pseudonyms. Note that creating a pseudonym can
1130	take a few minutes depending on the performance of the machine
1131	used.
1132
1133	@node Deleting Pseudonyms
1134	@subsubsection Deleting Pseudonyms
1135
1136
1137	@b{Please note that the text in this subsection is outdated and needs}
1138	@b{to be rewritten for version 0.10!}
1139	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1140
1141	With the @command{-D NICK} option pseudonyms can be deleted.
1142	Once the pseudonym has been deleted it is impossible to add
1143	content to the corresponding namespace. Deleting the
1144	pseudonym does not make the namespace or any content in it
1145	unavailable.
1146
1147	@node Advertising namespaces
1148	@subsubsection Advertising namespaces
1149
1150
1151	@b{Please note that the text in this subsection is outdated and needs}
1152	@b{to be rewritten for version 0.10!}
1153	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1154
1155	Each namespace is associated with meta-data that describes
1156	the namespace. This meta-data is provided by the user at
1157	the time that the namespace is advertised. Advertisements
1158	are published under keywords so that they can be found using
1159	normal keyword-searches. This way, users can learn about new
1160	namespaces without relying on out-of-band communication or directories.
1161	A suggested keyword to use for all namespaces is simply "namespace".
1162	When a keyword-search finds a namespace advertisement,
1163	it is automatically stored in a local list of known namespaces.
1164	Users can then associate a rank with the namespace to remember
1165	the quality of the content found in it.
1166
1167	@node Namespace names
1168	@subsubsection Namespace names
1169		1099
		1100	With the @command{-C NICK} option it can also be used to create a new
		1101	ego. An ego is the virtual identity of the entity in control of a
		1102	namespace or GNS zone. Anyone can create any number of egos. The
		1103	provided NICK name automatically corresponds to a GNU Name System
		1104	domain name. Thus, henceforth name resolution for any name ending in
		1105	``.NICK'' will use the NICK's zone. You should avoid using NICKs that
		1106	collide with well-known DNS names.
1170		1107
1171	@b{Please note that the text in this subsection is outdated and needs}	1108	@node Deleting Egos
1172	@b{to be rewritten for version 0.10!}	1109	@subsubsection Deleting Egos
1173	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1174		1110
1175	While the namespace is uniquely identified by its ID, another way	1111	With the @command{-D NICK} option egos can be deleted. Once the ego
1176	to refer to the namespace is to use the NICKNAME.	1112	has been deleted it is impossible to add content to the corresponding
1177	The NICKNAME can be freely chosen by the creator of the namespace and	1113	namespace or zone. However, the existing GNS zone data is currently
1178	hence conflicts are possible. If a GNUnet client learns about more	1114	not dropped. This may change in the future.
1179	than one namespace using the same NICKNAME, the ID is appended
1180	to the NICKNAME to get a unique identifier.
1181
1182	@node Namespace root
1183	@subsubsection Namespace root
1184
1185
1186	@b{Please note that the text in this subsection is outdated and needs}
1187	@b{to be rewritten for version 0.10!}
1188	@b{This especially concerns the terminology of Pseudonym/Ego/Identity.}
1189		1115
1190	An item of particular interest in the namespace advertisement is	1116	Deleting the pseudonym does not make the namespace or any content in
1191	the ROOT. The ROOT is the identifier of a designated entry in the	1117	it unavailable.
1192	namespace. The idea is that the ROOT can be used to advertise an
1193	entry point to the content of the namespace.
1194		1118
1195	@node File-Sharing URIs	1119	@node File-Sharing URIs
1196	@subsection File-Sharing URIs	1120	@subsection File-Sharing URIs