From 0cd11776011a870c225698f0d1095452e85cb1e5 Mon Sep 17 00:00:00 2001
From: Rasmus Dahlberg <rasmus@mullvad.net>
Date: Tue, 23 Nov 2021 16:35:55 +0100
Subject: persisted pads from meeting minutes

---
 archive/2021-11-23-idea-related-to-ssh-format | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 archive/2021-11-23-idea-related-to-ssh-format

(limited to 'archive/2021-11-23-idea-related-to-ssh-format')

diff --git a/archive/2021-11-23-idea-related-to-ssh-format b/archive/2021-11-23-idea-related-to-ssh-format
new file mode 100644
index 0000000..ab3bec2
--- /dev/null
+++ b/archive/2021-11-23-idea-related-to-ssh-format
@@ -0,0 +1,27 @@
+
+A half-baked idea related to ssh format proposal, needs thinking and verification
+
+              v-----the part that is hashed is §3 struct----v
+checksum := H("stuff" + "namespace with shard hint" + H(data))
+sig := Sign(sk, checksum)
+
+sig over checksum is what ssh-keygen -Y produces given sk, namespace, data?
+
+Submit with same formats as before:
+- vk
+- shard hint
+- H(data), "easily produced with sha256sum"
+- sig, "easily produced with ssh-keygen -Y and re-encoded to just be hex sig bytes"
+- domain hint
+
+Log computes checksum based on the above to verify signature
+Log does the normal "ok shard hint, ok domain hint checks"
+Log then accepts and creates leaf
+
+Leaf
+- checksum
+- sig
+- vk
+
+shard_hint is not needed in leaf now, could be where data is
+Monitor can verify signature if they know vk as before
-- 
cgit v1.2.3