[tor-bugs] #5968 [Tor Relay]: Improve onion key management
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sun May 27 01:14:44 UTC 2012
#5968: Improve onion key management
-------------------------+--------------------------------------------------
Reporter: mikeperry | Owner:
Type: enhancement | Status: new
Priority: major | Milestone:
Component: Tor Relay | Version:
Keywords: | Parent: #5456
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Changes (by mikeperry):
* parent: #5563 => #5456
Old description:
> As a best practice behavior, a relay should check that the onion key it
> tried to publish is actually the one it sees in the consensus in which it
> appears.
>
> The onion key should also be what authenticates the TLS key (rather than
> the identity key, as it is now).
>
> This would prevent some utility vectors of identity key theft, where a
> non-targeted upstream MITM attempts to use a relays identity to
> impersonate it in order to execute a tagging attack (#5563).
New description:
As a best practice behavior, a relay should check that the onion key it
tried to publish is actually the one it sees in the consensus in which it
appears.
The onion key should also be what authenticates the TLS key (rather than
the identity key, as it is now).
This would prevent some utility vectors of identity key theft, where a
non-targeted upstream MITM attempts to use a relays identity to
impersonate it in order to execute a tagging attack (#5456).
--
Comment:
Wrong parent.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5968#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list