[tor-talk] Tor for everyone; introducing Eccentric Authentication

Allen allenpmd at gmail.com
Tue Feb 23 21:26:48 UTC 2016


I don't understand.  If a message is associated with an identity, then it
is not anonymous, it is at best pseudo-anonymous.  Which are you proposing,
truly anonymous messages that have no identity associated with them, or
pseudo-anonymous messages that have a pseudo-anonymous identity associated
with them?

Second, it is easy to prevent spoofing of pseudo-anonymous identities using
digital signing.  The identity is represented by a public signing key, and
if a message is signed using the corresponding private key, it must have
been sent by a person who knows the private key.  What else is required
beyond that?


More information about the tor-talk mailing list