Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 9d5d3a7fd4
Branches Tags
tor
/
changes
/
replay-firstpart

replay-firstpart 716 B
History Raw

12345678910111213 
  1.   o Minor features (security):
    2. 

  2. 

  3.     - Check for replays of the public-key encrypted portion of an
    4. 

  4.       INTRODUCE1 cell, in addition to the current check for replays of
    5. 

  5.       the g^x value.  This prevents a possible class of active attacks
    6. 

  6.       by an attacker who controls both an introduction point and a
    7. 

  7.       rendezvous point, and who uses the malleability of AES-CTR to
    8. 

  8.       alter the encrypted g^x portion of the INTRODUCE1 cell.  We
    9. 

  9.       think that these attacks is infeasible (requiring the attacker
    10. 

  10.       to send on the order of zettabytes of altered cells in a short
    11. 

  11.       interval), but we'd rather block them off in case there are any
    12. 

  12.       classes of this attack that we missed.  Reported by dvorak.
    13. 

  13.