Add "handshake seal" #7

yusefnapora · 2019-12-04T21:58:22Z

libp2p/specs#234 adds a new requirement to the spec, which we should implement here.

To prevent replay attacks & tampering of handshake messages, we sign the Noise HandshakeHash with the libp2p key and send the signature before any ciphertexts are exchanged over the secure channel. Each party will verify the signature against their own HandshakeHash, which proves that both parties have the same view of the handshake exchange and that nothing has been altered.

The text was updated successfully, but these errors were encountered:

yusefnapora · 2019-12-04T21:59:45Z

Oh, also, we should update the protobuf field names to match the changes in libp2p/specs#234 while we're at it.

yusefnapora added this to the Ready for experimental use milestone Dec 6, 2019

yusefnapora closed this as completed Jan 20, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add "handshake seal" #7

Add "handshake seal" #7

yusefnapora commented Dec 4, 2019

yusefnapora commented Dec 4, 2019

Add "handshake seal" #7

Add "handshake seal" #7

Comments

yusefnapora commented Dec 4, 2019

yusefnapora commented Dec 4, 2019