vinipsmaker
commented
9 years ago Hi @kryptan, you can have a more detailed explanation of what role each library performs at the safe wiki.
Closed kryptan closed 8 years ago
vinipsmaker
commented
9 years ago Hi @kryptan, you can have a more detailed explanation of what role each library performs at the safe wiki.
dirvine
commented
9 years ago Absolutely it is planned. There is a consideration and this is it.
So not everyone will use a secured DHT or secured trustless PKI network for node identification. So we will provide a mechanism where keys will be auto generated and using a IKE mechanism pass these to each other, however there will be an override that allows a key to be passed in a connection request to require no IKE is attempted.
At the moment we confirm signatures in upper layers in this way, but wish to encrypt hop to hop connections using a passed down or IKE key.
As soon as utp is integrated that is a priority (utp plus UDP hole punch with socket handover (SOCKET_REUSE option).
I will mark this as requiring docs also as this should be clear in README and it currently is not.
ustulation
commented
8 years ago This crate had a major re-write/re-design. Please raise an issue again if required as almost everything in the library and the way it handled things have changed. Closing this.
Is it a planned feature? From readme it seems so but it is not in a "Future work" checklist.
Key distribution I think should be as follows: wherever there is a peer address (either in bootstap file or received from other peer) it should always be accompanied by a public key of this peer. This would allow to encrypt all communications without ever transmitting any single unecnrypted byte. This wouldn't work for local peer discovery though I guess.