diff options
Diffstat (limited to 'archive/2021-11-23-idea-related-to-ssh-format')
-rw-r--r-- | archive/2021-11-23-idea-related-to-ssh-format | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/archive/2021-11-23-idea-related-to-ssh-format b/archive/2021-11-23-idea-related-to-ssh-format new file mode 100644 index 0000000..ab3bec2 --- /dev/null +++ b/archive/2021-11-23-idea-related-to-ssh-format @@ -0,0 +1,27 @@ + +A half-baked idea related to ssh format proposal, needs thinking and verification + + v-----the part that is hashed is ยง3 struct----v +checksum := H("stuff" + "namespace with shard hint" + H(data)) +sig := Sign(sk, checksum) + +sig over checksum is what ssh-keygen -Y produces given sk, namespace, data? + +Submit with same formats as before: +- vk +- shard hint +- H(data), "easily produced with sha256sum" +- sig, "easily produced with ssh-keygen -Y and re-encoded to just be hex sig bytes" +- domain hint + +Log computes checksum based on the above to verify signature +Log does the normal "ok shard hint, ok domain hint checks" +Log then accepts and creates leaf + +Leaf +- checksum +- sig +- vk + +shard_hint is not needed in leaf now, could be where data is +Monitor can verify signature if they know vk as before |