[Freedombox-discuss] Santiago Verifying Requests

Nick M. Daly nick.m.daly at gmail.com
Wed Apr 11 02:20:41 UTC 2012

Hi folks, just wanted to give a quick update on the progress here.  I've
started the process of making Santiago encrypt and sign service request
messages.  I'm not completely sure the process is right though, it seems
like I'm requiring the system to do unnecessary work and that shortcuts
I'm not seeing should be available.

If you're interested in giving some feedback on the design, look at
simple_santiago.py's unpack_request method.  The basic idea is that we
want A and B to communicate privately through any number of
intermediaries (proxies), who they don't necessarily trust, but who
trust one another.

1. A encrypts its message to B.

2. To allow proxies to deliver the message, they need to know who the
   destination is, so A marks B as the message's destination and signs
   that message, so it can't be tampered with during transit.

3. Each proxy signs the message for transit to the next proxy, stripping
   off any previous signature, and rejecting any invalid or untrusted

Please let me know if you can think of any ways to simplify this, or if
I should go with another design, generally.

If you want a "working" Santiago, check out the previous commits [1].
Things are kinda torn up right now and *will not work*.


0: http://www.saltycrane.com/blog/2011/10/python-gnupg-gpg-example/

1: https://github.com/NickDaly/Plinth/commit/a4c0d1619d02cfc4150863acb5f02803c88ff4c1
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20120410/19a62525/attachment.pgp>

More information about the Freedombox-discuss mailing list