nit-picky spec questions about connection protocol please....

chris at chris at
Wed Jan 3 19:32:56 UTC 2007

I'm studying section 2 of the spec on connections
and just wanted to confirm some items with the good people of Tor....

* The 'short-term connection key' mentioned in third paragraph is an AES key

* The 'identity key' is the RSA public key associated with a router right?

* Spec says this identity key is self-signed but did not say the 'short-term
  connection key' is signed.  The 'short-term connection key' is signed by
  encrypting its hash with router's RSA private key right?

* Spec introduced the terms digital signature and certs in section 2 without
  mentioning all the boring details like what standard is used for these two
  things...e.g. X509?

* Are all the aforementioned certs and keys mentioned above sent in 'cells'?
  Which cell types?  This was not specified.

* It appears each onion router has a RSA public key that can be acquired from a
  directory server or EXTEND cells.  The begs the question how do the Onion
  Routers safely get the public keys of directory servers?  I assume routers
  talk to them over HTTS / SSL  right?




Christian Seberino, Ph.D.
SAN DIEGO, CA 92109-1622

Phone: (619) 573-4233
Email: chris at

More information about the tor-dev mailing list