commit 251dd11147ee857b54fcb3c062046b1a856da316
parent ec670a4c738d06d1b3a3488a45d43b38fbfb9510
Author: Martin Schanzenbach <schanzen@gnunet.org>
Date: Mon, 20 Dec 2021 02:25:49 +0100
ordering
Diffstat:
1 file changed, 16 insertions(+), 16 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
@@ -340,27 +340,33 @@ zTLD := zkl[126:129].zkl[63:125].zkl[0:62]
using "label", resulting in another private key which
can be used to create cryptographic signatures.
</dd>
+ <dt>ZKDF-Public(zk,label) -> zk'</dt>
+ <dd>
+ is a zone key derivation function which blinds a public zone key "zk"
+ using "label". "zk" and "zk'" must be unlinkable. Furthermore,
+ blinding "zk" with different values for "label" must result
+ in unlinkable different resulting values for "zk'".
+ </dd>
<dt>S-Encrypt(zk,label,nonce,expiration,rdata) -> bdata</dt>
<dd>
is a deterministic symmetric encryption function which encrypts the record
data "rdata" based on key material derived from "zk", "label",
"nonce" and "expiration".
- A deterministic encryption scheme is
- required to improve performance by leveraging caching features
- of underlying storages, in particular DHTs.
+ In order to leverage performance-enhancing caching features of certain
+ underlying storages, in particular DHTs, a deterministic encryption
+ scheme is recommended.
+ </dd>
+ <dt>S-Decrypt(zk,label,nonce,expiration,bdata) -> rdata</dt>
+ <dd>
+ is a symmetric encryption function which decrypts the encrypted record
+ data "bdata" based on key material derived from "zk", "label",
+ "nonce" and "expiration".
</dd>
<dt>Sign(d',bdata) -> sig</dt>
<dd>
is a function to sign "bdata" using the (blinded) private key
"d'", yielding an unforgable cryptographic signature "sig".
</dd>
- <dt>ZKDF-Public(zk,label) -> zk'</dt>
- <dd>
- is a zone key derivation function which blinds a public zone key "zk"
- using "label". "zk" and "zk'" must be unlinkable. Furthermore,
- blinding "zk" with different values for "label" must result
- in unlinkable different resulting values for "zk'".
- </dd>
<dt>Verify(zk',bdata,sig) -> valid</dt>
<dd>
is a function to verify the signature "sig" was created by
@@ -370,12 +376,6 @@ zTLD := zkl[126:129].zkl[63:125].zkl[0:62]
The function returns "true" if the signature is valid,
and otherwise "false".
</dd>
- <dt>S-Decrypt(zk,label,nonce,expiration,bdata) -> rdata</dt>
- <dd>
- is a symmetric encryption function which decrypts the encrypted record
- data "bdata" based on key material derived from "zk", "label",
- "nonce" and "expiration".
- </dd>
</dl>
</section>
</section>
