commit 3a7903c3c8568618fe12abc40ef0dca339c4a6b0 Author: Nick Mathewson nickm@torproject.org Date: Fri Dec 14 13:40:58 2012 -0500

Clarification & typo fix suggested by Ian Goldberg --- proposals/216-ntor-handshake.txt | 6 +++++- 1 files changed, 5 insertions(+), 1 deletions(-)

diff --git a/proposals/216-ntor-handshake.txt b/proposals/216-ntor-handshake.txt index fe727b1..e2e2d3e 100644 --- a/proposals/216-ntor-handshake.txt +++ b/proposals/216-ntor-handshake.txt @@ -28,7 +28,7 @@ Notation: generator g for this group.

Let a,A=KEYGEN() yield a new private-public keypair in G, where a is the - secret key and A = EXP(g,a). If additional checks are needed to insure + secret key and A = EXP(g,a). If additional checks are needed to ensure a valid keypair, they should be performed.

Let PROTOID be a string designating this variant of the protocol. @@ -56,6 +56,10 @@ Instantiation: keys are already very short. It is trivially collision-resistant, since KEYID(A)==KEYID(B) iff A==B.)

+ When representing an element of the curve25519 subgroup as a byte string, + use the standard (32-byte, little-endian, x-coordinate-only) representation + for curve25519 points. + Protocol:

Take a router with identity key digest ID.