[tor-dev] [draft] Proposal 220: Migrate server identity keys to Ed25519

Sebastian G. <bastik.tor> bastik.tor at googlemail.com
Tue Aug 13 18:19:06 UTC 2013


13.08.2013, Nick Mathewson:
> 2.3.1. Checking descriptor signatures.
> 
>    Current versions of Tor will handle these new formats by ignoring the
>    new fields, and not checking any ed25519 information.
> 
>    New version of Tor will have a flag that tells them whether to check
>    ed25519 information.  When it is set, they must check:
> 
>       * All RSA information and signatures that Tor implementations
>         currently check.
>       * If the identity-ed25519 line is present, it must be well-formed,
>         and the certificate must be well-formed and correctly signed,
>         and there must be a valid.

Hi,

I'm not getting the last part of this paragraph.

"... and there must be a valid." signature, something?

(I'm not done with reading it, but before I forget to mention it)

Regards,
Sebastian G.


More information about the tor-dev mailing list