Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 295f6d4e0f
Branches Tags
tor
/
doc
/
spec
/
proposals
/
098-todo.txt

098-todo.txt 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. Filename: 098-todo.txt
    2. 

  2. Title: Proposals that should be written
    3. 

  3. Version: $Revision$
    4. 

  4. Last-Modified: $Date$
    5. 

  5. Author: Nick Mathewson, Roger Dingledine
    6. 

  6. Created:
    7. 

  7. Status: Meta
    8. 

  8. 

  9. Overview:
    10. 

  10. 

  11.    This document lists ideas that various people have had for improving the
    12. 

  12.    Tor protocol.  These should be implemented and specified if they're
    13. 

  13.    trivial, or written up as proposals if they're not.
    14. 

  14. 

  15.    This is an active document, to be edited as proposals are written and as
    16. 

  16.    we come up with new ideas for proposals.  We should take stuff out as it
    17. 

  17.    seems irrelevant.
    18. 

  18. 

  19. 

  20. For protocol version 2:
    21. 

  21. 

  22.   - Fix onionskin handshake scheme to be more mainstream, less nutty.
    23. 

  23.     Can we just do
    24. 

  24.         E(HMAC(g^x), g^x) rather than just E(g^x) ?
    25. 

  25.     No, that has the same flaws as before. We should send
    26. 

  26.         E(g^x, C) with random C and expect g^y, HMAC_C(K=g^xy).
    27. 

  27.     Better ask Ian; probably Stephen too.
    28. 

  28.   - Versioned CREATE and friends
    29. 

  29.   - Length on CREATE and friends
    30. 

  30.   - Versioning on circuits
    31. 

  31.   - Versioning on create cells
    32. 

  32.   - SHA1 is showing its age
    33. 

  33.   - Not being able to upgrade ciphersuites or increase key lengths is
    34. 

  34.     lame.
    35. 

  35. 

  36. Any time:
    37. 

  37. 

  38.   - REASON_CONNECTFAILED should include an IP.
    39. 

  39.   - Spec should incorporate some prose from tor-design to be more readable.
    40. 

  40.   - Spec when we should rotate which keys
    41. 

  41. 

  42. 

  43. Things that should change...
    44. 

  44. 

  45. B.1. ... but which will require backward-incompatible change
    46. 

  46. 

  47.   - Circuit IDs should be longer.
    48. 

  48.   - IPv6 everywhere.
    49. 

  49.   - Maybe, keys should be longer.
    50. 

  50.     - Maybe, key-length should be adjustable.  How to do this without
    51. 

  51.       making anonymity suck?
    52. 

  52.   - Drop backward compatibility.
    53. 

  53.   - We should use a 128-bit subgroup of our DH prime.
    54. 

  54.   - Handshake should use HMAC.
    55. 

  55.   - Multiple cell lengths.
    56. 

  56.   - Ability to split circuits across paths (If this is useful.)
    57. 

  57.   - SENDME windows should be dynamic.
    58. 

  58. 

  59.   - Directory
    60. 

  60.      - Stop ever mentioning socks ports
    61. 

  61. 

  62. B.1. ... and that will require no changes
    63. 

  63. 

  64.    - Mention multiple addr/port combos
    65. 

  65.    - Advertised outbound IP?
    66. 

  66.    - Migrate streams across circuits.
    67. 

  67. 

  68. B.2. ... and that we have no idea how to do.
    69. 

  69. 

  70.    - UDP (as transport)
    71. 

  71.    - UDP (as content)
    72. 

  72.    - Use a better AES mode that has built-in integrity checking,
    73. 

  73.      doesn't grow with the number of hops, is not patented, and
    74. 

  74.      is implemented and maintained by smart people.
    75. 

  75. 

  76. Let onion keys be not just RSA but maybe DH too. for the reply onion
    77. 

  77. design.
    78.