[taler-anastasis] branch master updated (cc603f7 -> ab06c65)

[gnunet]

This is an automated email from the git hooks/post-receive script.

grothoff pushed a change to branch master
in repository anastasis.

    from cc603f7  modified truth_anastasis.png
     new ea121cd  new figure
     new 4260b60  Merge branch 'master' of git+ssh://git.taler.net/anastasis
     new 2ace25a  text
     new 6a2818f  Merge branch 'master' of git+ssh://git.taler.net/anastasis
     new 234a380  legend
     new ab06c65  Merge branch 'master' of git+ssh://git.taler.net/anastasis

The 6 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 doc/thesis/design.tex | 32 ++++++++++++++++++++++++++++++--
 1 file changed, 30 insertions(+), 2 deletions(-)

diff --git a/doc/thesis/design.tex b/doc/thesis/design.tex
index 34a554f..3736348 100644
--- a/doc/thesis/design.tex
+++ b/doc/thesis/design.tex
@@ -21,8 +21,12 @@ be used.\\
 
 The Figure~\ref{fig:legend_keys_anastasis} shows the legend for the
 illustration of the Anastasis key usage shown in 
Figure~\ref{fig:keys_anastasis}
-on page~\pageref{fig:keys_anastasis}.
-The figure~\ref{fig:keys_anastasis} gives an overview of the keys used in 
Anastasis. It also shows how they are created and used.\\
+on page~\pageref{fig:keys_anastasis} and in
+Figure~\ref{fig:truth_keys} on page~\pageref{fig:truth_keys}.
+The Figure~\ref{fig:keys_anastasis} gives an overview of the keys used in 
Anastasis. It also shows how they are created and used.
+Figure~\ref{fig:truth_keys} shows how the keys to sign the (encrypted) truth
+data used during authentication are generated. The seed(s) used in
+Figure~\ref{fig:truth_keys} are part of the recovery document.
 \newline
 \begin{figure}[H]
        \centering
@@ -67,6 +71,30 @@ page~\pageref{fig:keys_anastasis} are explained:
 \end{description}
 \newpage
 
+\begin{figure}[H]
+       \centering
+       \includegraphics[scale=0.48]{images/truth_anastasis.png}
+       \caption{Key generation for signing of encrypted ``Truth'' data in 
Anastasis}
+       \label{fig:truth_keys}
+\end{figure}
+
+\noindent In the following the keys shown in the Figure~\ref{fig:truth_keys} on
+page~\pageref{fig:truth_keys} are explained:
+\begin{description}
+\item[truth seed] {Clients generate a {\em random truth} seed for each truth
+  which is stored in the encrypted recovery document.}
+\item[private truth key] {{\em Private keys} are derived per truth upload. They
+  are used to sign the uploaded data. This way, the escrow provider
+  can later prove that they preserved the data correctly. We use EdDSA for
+  the signatures.}
+\item[public truth key] {{\em Public keys} are used to identify the truth
+  in the provider's database. Providers only store the first truth upload with
+  a valid signature. Changes to truth are thus not possible, clients must
+  create a fresh seed for every upload.}
+ \end{description}
+
+
+
 \subsection{Adversary model}
 
 The adversary model of Anastasis has two types of adversaries: {\em

-- 
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.