[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-SVN] [taler-anastasis] 01/02: Terms more clearly defined: Escrow
From: |
gnunet |
Subject: |
[GNUnet-SVN] [taler-anastasis] 01/02: Terms more clearly defined: Escrow provider is our backup provider, key provider stores the key shares |
Date: |
Tue, 20 Aug 2019 10:39:10 +0200 |
This is an automated email from the git hooks/post-receive script.
dennis-neufeld pushed a commit to branch master
in repository anastasis.
commit 6e2bcd478613dd552696f034c1687f9302f53c3e
Author: Dennis Neufeld <address@hidden>
AuthorDate: Tue Aug 20 10:35:34 2019 +0200
Terms more clearly defined: Escrow provider is our backup provider, key
provider stores the key shares
---
src/api/api-anastasis.rst | 20 ++++++++++++++++----
1 file changed, 16 insertions(+), 4 deletions(-)
diff --git a/src/api/api-anastasis.rst b/src/api/api-anastasis.rst
index d4bae1d..2a71d9f 100644
--- a/src/api/api-anastasis.rst
+++ b/src/api/api-anastasis.rst
@@ -48,7 +48,7 @@ EdDSA public key.
The escrow provider responds with an `EncryptedPolicyDocument`_ object.
This request should
virtually always be successful, if the account exists.
- X-Anastatis-Version: $NUMBER --- return actual version number in header;
+ X-Anastasis-Version: $NUMBER --- return actual version number in header;
(if not specified in request, return latest).
**Details:**
@@ -73,13 +73,13 @@ EdDSA public key.
.. code-block:: tsref
interface PolicyDocument {
- // List of escrow providers and selected authentication method
+ // List of key providers and selected authentication method
methods: EscrowMethod[];
// List of possible decryption policies
policy: DecryptionPolicy[];
- // Account identifier at backup provider, AES-encrypted with
+ // Account identifier at escrow provider, AES-encrypted with
// (symmetric) master_key, i.e.
// https://sync.taler.net/ + private key
backup_account: byte[];
@@ -87,13 +87,17 @@ EdDSA public key.
}
interface EscrowMethod {
+ // URL of the key provider
provider_url : string;
+ // Name of the escrow method (e.g. security question, SMS etc.)
escrow_method: string;
+ // UUID of the escrow method
uuid: uuid;
salt: byte[32];
+
}
interface DecryptionPolicy {
@@ -110,6 +114,7 @@ EdDSA public key.
// Name of the service/program the masterkey is for (e.g. GNU Taler
Wallet No.1,
// GNU Taler Wallet No.2, KeePass No.1 etc.)
name: string;
+
}
@@ -214,20 +219,27 @@ EdDSA public key.
// Authentication token (i.e. as received via SMS/E-mail)
token? : string;
+
}
- .. _Recovery:
+ .. _Recovery:
.. code-block:: tsref
interface Recovery {
// Escrow recovery nonce
key: byte[32];
+
}
.. _EscrowChallenge:
.. code-block:: tsref
interface EscrowChallenge {
+ // ground truth, i.e. challenge question,
+ // phone number, e-mail address, picture, fingerprint, ...
truth: byte[];
+
+ // mime type of truth, i.e. text/ascii, image/jpeg, etc.
truth_mime: string;
+
}
--
To stop receiving notification emails like this one, please contact
address@hidden.