[tor-bugs] #5563 [Tor Relay]: Better support for ephemeral relay identity keys
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Wed Apr 4 08:36:54 UTC 2012
#5563: Better support for ephemeral relay identity keys
-------------------------+--------------------------------------------------
Reporter: mikeperry | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Tor Relay | Version:
Keywords: | Parent: #5456
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Comment(by arma):
Replying to [comment:5 mikeperry]:
> the TLS link key, which is authenticated only by the identity key
(according to my read of tor-spec).
Correct.
> what actually verifies that the onion key you try to publish is what
gets published?
If you're talking about an adversary who controls your network, what stops
them from publishing a descriptor for a new relay near you on the network,
making up their own identity key?
I worry you're trying to block a particular attack scenario while not
considering a big pile of equivalently bad attack scenarios.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5563#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list