[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-developers] Namespaces going borZoi?
|
From: |
Christian Grothoff |
|
Subject: |
[GNUnet-developers] Namespaces going borZoi? |
|
Date: |
Sat, 1 Feb 2003 20:48:58 -0500 |
|
User-agent: |
KMail/1.4.3 |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi everyone!
For the namespace proposal we need a public key signature mechanism. What is
important is that the public key and the signature are small since they must
fit together with the meta-data into the blocks. Also, the signature
verification should better be fast since every peer needs to perform it for
each signed block that is transferred.
To the best of my knowledge, elliptic curve cryptography fits that bill much
better than RSA where the public key and the signature would take 512 bytes
for 2048-bit keys (which is what would be reasonably secure imo). The
elliptic keys should be about a 10th of the size and verification should also
be faster.
A free (as in GPL) implementation is available in the form of borZoi:
http://dragongate-technologies.com/products.html
So what do you think, is an additional dependency on a fairly uncommon library
acceptable or should we stick to just one public key encryption scheme to
"keep it simple"? Has anyone got any experience with borZoi?
Christian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE+PHkL9tNtMeXQLkIRArvhAJ93ZiMMikZO7s0WNmiAVhMSzA74bgCfTSB3
qjEL0IOgcVqKigTlGSqppyc=
=3x46
-----END PGP SIGNATURE-----
- [GNUnet-developers] Namespaces going borZoi?,
Christian Grothoff <=