[or-cvs] r17533: {tor} remove some already-proposed things from 098-todo.txt (tor/trunk/doc/spec/proposals)

nickm at seul.org nickm at seul.org
Tue Dec 9 17:39:46 UTC 2008 

Author: nickm
Date: 2008-12-09 12:39:46 -0500 (Tue, 09 Dec 2008)
New Revision: 17533

Modified:
   tor/trunk/doc/spec/proposals/098-todo.txt
Log:
remove some already-proposed things from 098-todo.txt

Modified: tor/trunk/doc/spec/proposals/098-todo.txt
===================================================================
--- tor/trunk/doc/spec/proposals/098-todo.txt	2008-12-09 16:59:33 UTC (rev 17532)
+++ tor/trunk/doc/spec/proposals/098-todo.txt	2008-12-09 17:39:46 UTC (rev 17533)
@@ -19,28 +19,33 @@
 
 For some later protocol version.
 
+  - It would be great to get smarter about identity and linkability.
+    It's not crazy to say, "Never use the same circuit for my SSH
+    connections and my web browsing."  How far can/should we take this?
+
   - Fix onionskin handshake scheme to be more mainstream, less nutty.
     Can we just do
         E(HMAC(g^x), g^x) rather than just E(g^x) ?
     No, that has the same flaws as before. We should send
         E(g^x, C) with random C and expect g^y, HMAC_C(K=g^xy).
     Better ask Ian; probably Stephen too.
-  - Versioned CREATE and friends
+
   - Length on CREATE and friends
-  - Versioning on circuits
-  - Versioning on create cells
-  - SHA1 is showing its age
+
+  - Versioning on circuits and create cells, so we have a clear path
+    to improve the circuit protocol.
+
+  - SHA1 is showing its age.  We should get a design for upgrading our
+    hash once the AHS competition is done, or even sooner.
+
   - Not being able to upgrade ciphersuites or increase key lengths is
     lame.
   - Paul has some ideas about circuit creation; read his PET paper once it's
     out.
-  - Allow more TLS ciphersuites.
 
 Any time:
 
   - Some ideas for revising the directory protocol:
-    - Should we also look into a "delta since last network-status
-      checkpoint" scheme, to reduce overhead further?
     - Extend the "r" line in network-status to give a set of buckets (say,
       comma-separated) for that router.
       - Buckets are deterministic based on IP address.
@@ -54,8 +59,6 @@
   - Spec when we should rotate which keys
   - Spec how to publish descriptors less often
   - Describe pros and cons of non-deterministic path lengths
-  - get rid of the Named flag, or automate it at the dir auth end,
-    or automate it at the client end, or something.
 
   - We should use a variable-length path length by default -- 3 +/- some
     distribution. Need to think harder about allowing values less than 3,
@@ -66,7 +69,7 @@
 B.1. ... but which will require backward-incompatible change
 
   - Circuit IDs should be longer.
-  - IPv6 everywhere.
+  . IPv6 everywhere.
   - Maybe, keys should be longer.
     - Maybe, key-length should be adjustable.  How to do this without
       making anonymity suck?
@@ -82,7 +85,6 @@
 
 B.1. ... and that will require no changes
 
-   - Mention multiple addr/port combos
    - Advertised outbound IP?
    - Migrate streams across circuits.
    - Fix bug 469 by limiting the number of simultaneous connections per IP.

More information about the tor-commits mailing list