On 4 Dec. 2016, at 03:05, bancfc@openmailbox.org wrote:
Read the Alpenhorn paper. Really neat stuff. It is able to guarantee forward-secrecy for identities and metadata and doesn't need out-of-band identity sharing. Can any of this stuff be borrowed for HSs?
There's still out-of-band identify sharing:
"does not require out-of-band communication other than knowing the other user’s Alpenhorn username (email address)"
They also don't seem to understand how to do onion encryption efficiently:
"A naïve approach would be to onion-encrypt a message [but] each layer of encryption adds additional space overhead"
And the entire protocol requires trusting at least one of a series of key servers.
T