[Freedombox-discuss] Follow up to the FreedomBox 'bump/hi-five' challenge
debian at kevinsteen.net
Thu Jun 23 23:13:41 UTC 2011
On 23/06/11 19:46, Stefano Maffulli wrote:
> Following up on the discussion started on FreedomBox discuss mailing
> list with some more details on how to implement this piece of the Box
> (@coiax on irc started calling it ManusVexo).
> The problem to solve is how two humans make the initial exchange of
> credentials required to establish a relationship between their
> respective freedombox installations.
I may be misunderstanding how it works, but it seems the Off-The-Record
(OTR) protocol could be useful here: Use QRCodes to exchange the Public
Key and IP address of your FreedomBoxen, and they then have enough
information to create a secure connection and authenticate the other
end. (Encryption keys are created at connection time with OTR.)
Then, with a secure, authenticated connection between the FreedomBoxen,
you can share whatever other data you need to.
Details on OTR: http://www.cypherpunks.ca/otr/
More information about the Freedombox-discuss