[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[taler-anastasis] branch master updated: shuffle
From: |
gnunet |
Subject: |
[taler-anastasis] branch master updated: shuffle |
Date: |
Thu, 11 Jun 2020 12:36:11 +0200 |
This is an automated email from the git hooks/post-receive script.
grothoff pushed a commit to branch master
in repository anastasis.
The following commit(s) were added to refs/heads/master by this push:
new 157cea9 shuffle
157cea9 is described below
commit 157cea9288beb09567e44e30c4f5e6cdabaca292
Author: Christian Grothoff <christian@grothoff.org>
AuthorDate: Thu Jun 11 12:36:09 2020 +0200
shuffle
---
doc/thesis/design.tex | 48 ++++++++++++++++++++++-------------------------
doc/thesis/thesis.run.xml | 4 ++--
2 files changed, 24 insertions(+), 28 deletions(-)
diff --git a/doc/thesis/design.tex b/doc/thesis/design.tex
index e57a802..cecd55a 100644
--- a/doc/thesis/design.tex
+++ b/doc/thesis/design.tex
@@ -138,6 +138,28 @@ them agility with respect to the parties whom they offer
their
trust, resulting in trust agility~\cite{marlinspike2011}.
+\subsection{Encryption of the core secret}
+
+The {\em core secret} of the user is (AES) encrypted using a symmetric
+{\em master key}. Recovering the master key requires the user to
+satisfy a {\em policy}. Policies specify a set of escrow methods, each
+of which leads the user to a {\em key share}. Combining those key
+shares (by hashing) allows the user to obtain a policy key, which can
+be used to decrypt the master key. There can be many policies,
+satisfying any of these will allow the user to recover the master key.
+
+Which escrow methods are combined into which policies and which
+providers are involved can be different for each user. As users are
+unlikely to remember all the details, Anastasis needs a way to
+remember the specific configuration a user made.
+
+This process description is provided in a {\em recovery document}.
+
+% Figure~\ref{fig:recoverydoc} gives an example for a the contents of
+% a recovery document.
+% FIXME: actually include example!
+
+
\subsection{The recovery document}
A {\em recovery document} includes all the information a user needs to
@@ -228,32 +250,6 @@ user_identifier_derive(attributes, server_salt, keysize)
\end{figure}
-\subsection{The recovery document}
-
-The {\em core secret} of the user is (AES) encrypted using a symmetric
-{\em master key}. Recovering the master key requires the user to
-satisfy a {\em policy}. Policies specify a set of escrow methods, each
-of which leads the user to a {\em key share}. Combining those key
-shares (by hashing) allows the user to obtain a policy key, which can
-be used to decrypt the master key. There can be many policies,
-satisfying any of these will allow the user to recover the master key.
-
-Which escrow methods are combined into which policies and which
-providers are involved can be different for each user. As users are
-unlikely to remember all the details, Anastasis needs a way to
-remember the specific configuration a user made.
-
-This process description is provided in a {\em recovery document}. A
-recovery document includes a set of escrow methods and a set of
-policies, including one encryption of the master key per policy, and
-the encrypted core secret. For each escrow method, the recovery
-document includes authentication method-specific details, a {\em truth
- seed} and the URL of the escrow provider.
-
-% Figure~\ref{fig:recoverydoc} gives an example for a the contents of
-% a recovery document.
-% FIXME: actually include example!
-
\subsection{Authenticity of recovery documents}
At each Anastasis server, an EdDSA-based {\em account key} is used to
diff --git a/doc/thesis/thesis.run.xml b/doc/thesis/thesis.run.xml
index 6c8325d..f9576b8 100644
--- a/doc/thesis/thesis.run.xml
+++ b/doc/thesis/thesis.run.xml
@@ -41,7 +41,7 @@
>
]>
<requests version="1.0">
- <internal package="biblatex" priority="9" active="0">
+ <internal package="biblatex" priority="9" active="1">
<generic>latex</generic>
<provides type="dynamic">
<file>thesis.bcf</file>
@@ -65,7 +65,7 @@
<file>american.lbx</file>
</requires>
</internal>
- <external package="biblatex" priority="5" active="0">
+ <external package="biblatex" priority="5" active="1">
<generic>biber</generic>
<cmdline>
<binary>biber</binary>
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [taler-anastasis] branch master updated: shuffle,
gnunet <=