Closed devsnd closed 10 years ago
Communications between master and slave are secure, right?
The common key is only used to indicate a valid friendship to master, or also for communication between Alice and Bob?
What's a public friend key? I'd imagine slaves to keep public keys of their friends and their own private key.
How are name clashes avoided between slaves? Are they identified by their public keys?
How do friend tokens work?
Unless we want the master to tell which friends are online, I think the common secret is not necessary. Master doesn't need to know about friendships:
alice --"hi i'm alice, here's my public key"--> master
bob --"hi i'm bob, here's my public key"--> master
bob --"please tell this public key (alice) to call me up, signed(bob)"--> master
master --"bob wants to talk to you. here's his location and signature."--> alice (verifies signature)
// now alice and bob are free to communicate amongst themselves. (see edit)
// if alice doesn't answer, master doesn't know her, she's not there anymore
// or doesn't want to talk
Went and fixed some instances of authenticate. There's no fi in there. :sunglasses:
edit: Of course, Alice should make sure she's really talking to Bob:
alice --"alice here. are you really bob? signed(alice)"--> bob
do one thing and do it well.
we're not doing well enough yet for this.
I've thought a little how we're going about to implement a master server (running in the internet) that can interconnect the slave servers (that people might run at home)
There are multiple things that are important.
Master server:
Slave server
Once everybody shook their hands, slaves can communicate as they like.
This might look a lil' sumpin' like this:
alice and bob are slaves
registration
making friends
locating other slave
So all the master server must know are the knock signs.
Any flaws?