Re: [Mixmaster-devel] Inter-remailer protocol
Brought to you by:
weaselp
From: Scott R. <sc...@re...> - 2001-11-07 18:34:21
|
On Mon, Nov 05, 2001 at 03:25:16PM -0800, Len Sassaman wrote: > > Scott Renfro was going to dig through the source that had this > implemented in it. Scott, how goes it? As usual, got swamped. Will dig into it today and post a summary late today or tomorrow. Three initial thoughts: I think that SSL is worth considering in lieu of YASTP (yet another secure transport protocol). Off the top of my head, it seems we would mandate the use of EDH-RSA-DES-EDE3-SHA, could use the existing RSA keys converted into self-signed certs and verify those against the existing key list using the certification verification hook in OpenSSL. I think we want ephemeral DH to get forward secrecy, though we may want to cache the EDH keys for short periods to reduce the key generation overhead. (I'm not sure that OpenSSL supports this nor if it resists small subgroup attacks when reusing DH keys.) Perhaps support for the inter-remailer protocol and support for SMTP should be listed as a capabilities. This would drive the logic of when to try each. Seems like we desire two-way authentication. The client mix wants to ensure that he's delivering messages to the right next hop and the server mix wants to only accept messages from known mixes (white-list). (What are our requirements/goals, anyway? Have we attempted to list them?) cheers, --Scott -- Scott Renfro <sc...@re...> |