[taler-anastasis] branch master updated: shuffle

[gnunet]

This is an automated email from the git hooks/post-receive script.

grothoff pushed a commit to branch master
in repository anastasis.

The following commit(s) were added to refs/heads/master by this push:
     new 157cea9  shuffle
157cea9 is described below

commit 157cea9288beb09567e44e30c4f5e6cdabaca292
Author: Christian Grothoff <christian@grothoff.org>
AuthorDate: Thu Jun 11 12:36:09 2020 +0200

    shuffle
---
 doc/thesis/design.tex     | 48 ++++++++++++++++++++++-------------------------
 doc/thesis/thesis.run.xml |  4 ++--
 2 files changed, 24 insertions(+), 28 deletions(-)

diff --git a/doc/thesis/design.tex b/doc/thesis/design.tex
index e57a802..cecd55a 100644
--- a/doc/thesis/design.tex
+++ b/doc/thesis/design.tex
@@ -138,6 +138,28 @@ them agility with respect to the parties whom they offer 
their
 trust, resulting in trust agility~\cite{marlinspike2011}.
 
 
+\subsection{Encryption of the core secret}
+
+The {\em core secret} of the user is (AES) encrypted using a symmetric
+{\em master key}.  Recovering the master key requires the user to
+satisfy a {\em policy}. Policies specify a set of escrow methods, each
+of which leads the user to a {\em key share}. Combining those key
+shares (by hashing) allows the user to obtain a policy key, which can
+be used to decrypt the master key.  There can be many policies,
+satisfying any of these will allow the user to recover the master key.
+
+Which escrow methods are combined into which policies and which
+providers are involved can be different for each user. As users are
+unlikely to remember all the details, Anastasis needs a way to
+remember the specific configuration a user made.
+
+This process description is provided in a {\em recovery document}.
+
+% Figure~\ref{fig:recoverydoc} gives an example for a the contents of
+% a recovery document.
+% FIXME: actually include example!
+
+
 \subsection{The recovery document}
 
 A {\em recovery document} includes all the information a user needs to
@@ -228,32 +250,6 @@ user_identifier_derive(attributes, server_salt, keysize)
 \end{figure}
 
 
-\subsection{The recovery document}
-
-The {\em core secret} of the user is (AES) encrypted using a symmetric
-{\em master key}.  Recovering the master key requires the user to
-satisfy a {\em policy}. Policies specify a set of escrow methods, each
-of which leads the user to a {\em key share}. Combining those key
-shares (by hashing) allows the user to obtain a policy key, which can
-be used to decrypt the master key.  There can be many policies,
-satisfying any of these will allow the user to recover the master key.
-
-Which escrow methods are combined into which policies and which
-providers are involved can be different for each user. As users are
-unlikely to remember all the details, Anastasis needs a way to
-remember the specific configuration a user made.
-
-This process description is provided in a {\em recovery document}.  A
-recovery document includes a set of escrow methods and a set of
-policies, including one encryption of the master key per policy, and
-the encrypted core secret.  For each escrow method, the recovery
-document includes authentication method-specific details, a {\em truth
-  seed} and the URL of the escrow provider.
-
-% Figure~\ref{fig:recoverydoc} gives an example for a the contents of
-% a recovery document.
-% FIXME: actually include example!
-
 \subsection{Authenticity of recovery documents}
 
 At each Anastasis server, an EdDSA-based {\em account key} is used to
diff --git a/doc/thesis/thesis.run.xml b/doc/thesis/thesis.run.xml
index 6c8325d..f9576b8 100644
--- a/doc/thesis/thesis.run.xml
+++ b/doc/thesis/thesis.run.xml
@@ -41,7 +41,7 @@
   >
 ]>
 <requests version="1.0">
-  <internal package="biblatex" priority="9" active="0">
+  <internal package="biblatex" priority="9" active="1">
     <generic>latex</generic>
     <provides type="dynamic">
       <file>thesis.bcf</file>
@@ -65,7 +65,7 @@
       <file>american.lbx</file>
     </requires>
   </internal>
-  <external package="biblatex" priority="5" active="0">
+  <external package="biblatex" priority="5" active="1">
     <generic>biber</generic>
     <cmdline>
       <binary>biber</binary>

-- 
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.