kytv/I2P_Website
1
0
Fork 0
forked from I2P_Developers/i2p.www
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Prop 123: Remove blindedPublicKey from the KDF inputs

Browse Source 
subcredential already binds this value into the KDF.
This commit is contained in:
str4d
2018-12-06 18:17:43 +00:00
parent 7ac1e2008f
commit f4e79bb8aa
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
i2p2www/spec/proposals/123-new-netdb-entries.rst
View File

@@ -784,7 +784,7 @@ First, the input to the key derivation process is prepared:
.. raw:: html
{% highlight lang='text' %}
outerInput = blindedPublicKey || subcredential || publishedTimestamp
outerInput = subcredential || publishedTimestamp
{% endhighlight %}
Next, a random salt is generated:
@@ -828,7 +828,7 @@ Then the key used to encrypt layer 1 is derived:
.. raw:: html
{% highlight lang='text' %}
outerInput = blindedPublicKey || subcredential || publishedTimestamp
outerInput = subcredential || publishedTimestamp
keys = KDF(outerInput, outerSalt, "ELS2_L1K", S_KEY_LEN + S_IV_LEN)
outerKey = keys[0..S_KEY_LEN]
outerIV = keys[S_KEY_LEN..(S_KEY_LEN+S_IV_LEN)]
@@ -852,7 +852,7 @@ Encryption proceeds in a similar fashion to layer 1:
.. raw:: html
{% highlight lang='text' %}
innerInput = blindedPublicKey || authCookie || subcredential || publishedTimestamp
innerInput = authCookie || subcredential || publishedTimestamp
innerSalt = H(PRNG(SALT_LEN))
keys = KDF(innerInput, innerSalt, "ELS2_L2K", S_KEY_LEN + S_IV_LEN)
innerKey = keys[0..S_KEY_LEN]
@@ -870,7 +870,7 @@ Decryption proceeds in a similar fashion to layer 1:
.. raw:: html
{% highlight lang='text' %}
innerInput = blindedPublicKey || authCookie || subcredential || publishedTimestamp
innerInput = authCookie || subcredential || publishedTimestamp
innerSalt = innerCiphertext[0..SALT_LEN]
keys = KDF(innerInput, innerSalt, "ELS2_L2K", S_KEY_LEN + S_IV_LEN)
innerKey = keys[0..S_KEY_LEN]