[tor-bugs] #2768 [Metrics]: Write standalone directory document signature verification tools
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Wed Mar 16 17:30:31 UTC 2011
#2768: Write standalone directory document signature verification tools
-------------------------+--------------------------------------------------
Reporter: rransom | Owner: rransom
Type: enhancement | Status: new
Priority: major | Milestone:
Component: Metrics | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Right now, the only easy way for researchers to verify that they are using
the actual Tor network consensuses/votes/descriptors is to verify
Karsten's OpenPGP signature of the tarball (if there is one). Tor already
contains code to verify those documents which have signatures; we should
expose that code to researchers' scripts, too.
The extra-info descriptors and microdescriptors are authenticated by
having their hashes published in other documents, rather than being signed
directly, so they will be a bit trickier for simple tools to verify; we
should postpone writing verification tools for those documents for now.
--
Ticket URL: <https://trac.torproject.org:443/projects/tor/ticket/2768>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list