[tor-bugs] #2768 [Metrics Utilities]: Write standalone directory document signature verification tools
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Mon May 7 18:16:45 UTC 2012
#2768: Write standalone directory document signature verification tools
-------------------------------+--------------------------------------------
Reporter: rransom | Owner: rransom
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Metrics Utilities | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------------+--------------------------------------------
Comment(by karsten):
Robert, do you have a list of things that need to be checked in order to
verify the various descriptors? Here's what I do for server descriptors,
certs, and consensuses:
Verify server descriptors using the contained signing key. Verify that
1) a contained fingerprint is actually a hash of the signing key and
2) a router signature was created using the signing key.
Verify consensuses using the separate certs. Verify that
1) the fingerprint in a cert is actually a hash of the identity key,
2) a cert was signed using the identity key,
3) a consensus was signed using the signing key from the cert.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2768#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list