verify pk hash - lsd0012 - LSD0012: CORE Authenticated Key Exchange (CAKE)

commit ac9cdfe50e89fb7f87edc69d2bbff57aadaaa921
parent acae132a3aefe122760223a62c49d2cfba592ce1
Author: Martin Schanzenbach <schanzen@gnunet.org>
Date:   Wed, 16 Apr 2025 07:45:37 +0200

verify pk hash

Diffstat:
M draft-schanzen-cake.xml  | 1 +

1 file changed, 1 insertion(+), 0 deletions(-)
diff --git a/draft-schanzen-cake.xml b/draft-schanzen-cake.xml
@@ -255,6 +255,7 @@ MS       |                                               |
         </t>
         <ol>
           <li>Verify that the message type is CORE_INITIATOR_HELLO</li>
+          <li>Verify that H(pk_R) matches R's pk_R.</li>
           <li>(ss<sub>R</sub>,c<sub>R</sub>) &lt;- Decaps(sk<sub>R</sub>, c<sub>R</sub>)</li>
           <li>(ss<sub>e</sub>,c<sub>e</sub>) &lt;- Encaps(pk<sub>e</sub>)</li>
           <li>Generate ETS from <xref target="key_schedule"/> and decrypt pk<sub>I</sub>.</li>

	lsd0012 LSD0012: CORE Authenticated Key Exchange (CAKE)
	Log \| Files \| Refs