Skip to content

Include redundant parts of signed message into protocol objects for error-checking purposes? #2816

New issue
New issue
Closed
Closed
Include redundant parts of signed message into protocol objects for error-checking purposes?#2816
Labels
Is this done?Ambiguous closing requirements may already be metProtocolProtocol designquestionThis is a questionwontfixNon-issue or no intent for changes
@fjarri

Description

@fjarri
fjarri
opened on Nov 2, 2021

Currently it is a pattern in protocol objects that if a part of the signed message can be obtained on the receiving end from some other source, it is not included in the object itself. Examples:

  • in AuthorizedKeyFrag we sign HRAC | kfrag, but do not include the HRAC, since it can be obtained on the Ursula's side from ReencryptionRequest.
  • in ReencryptionResponse we sign capsules | cfrags, but do not include the capsules since the receiver (Bob) already has them.
  • in AuthorizedTreasureMap, we sign recipient_key | treasure_map, but do not include the recipient key (since naturally the recipient knows it).

An argument can be made for still including those in the respective object to perhaps be able to provide a more accurate error message if the verification fails.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Is this done?Ambiguous closing requirements may already be metProtocolProtocol designquestionThis is a questionwontfixNon-issue or no intent for changes

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions