Re: [tor-dev] Proposal 273: Exit relay pinning for web services

Philipp Winter:

The proposal is in draft state. We have several open questions that we are still wrestling with in Section 2.6. Any feedback is greatly appreciated. You can track the evolution of our proposal online: https://github.com/NullHypothesis/exit-pinning

Hi Philipp,

It might be interesting to use this in conjunction with Namecoin. In the same way that Namecoin can reduce some of the issues with HPKP (Namecoin gives all nodes the same view, doesn't rely on TOFU, and isn't specific to HTTP), it seems like allowing Namecoin domain names to specify exit relay pins might reduce those issues here. Of course, this only is helpful for services that have a Namecoin domain name.

Would there be interest in this capability?

Cheers, -Jeremy