]> git.rm.cloudns.org Git - xonotic/d0_blind_id.git/commitdiff
add the non-blind ID protocol to the txt file for reference
authorRudolf Polzer <divverent@alientrap.org>
Fri, 27 Aug 2010 17:27:02 +0000 (19:27 +0200)
committerRudolf Polzer <divverent@alientrap.org>
Fri, 27 Aug 2010 17:27:02 +0000 (19:27 +0200)
d0_blind_id.txt

index 5234fe5c3055be96d4486aa2d4e42834ce0d4f78..a469118bda966b953dfbb325cda89d2a7f8e3fc2 100644 (file)
@@ -113,3 +113,31 @@ Low level protocol:
          "packet"
        - a value in double quotes is also defined in terms of this protocol, i.e.
          the length is preceded
+
+
+
+NOTE: to generate NON blind IDs, the process is not very straightforward. It
+works like this:
+
+Server shall:
+- load private key
+
+Both shall:
+- perform authentication as usual
+
+Server shall:
+- notice that the status is false
+- call d0_blind_id_authenticate_with_private_id_generate_missing_signature
+- write public ID
+- send that data to client
+
+Client shall:
+- read own private ID
+- get fingerprint
+- read received public ID (leaves the private part alone)
+- verify fingerprint
+- possibly verify ID
+- write own private ID again
+
+This ensures that only the ID the client authenticated with is signed by the
+server