Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encryption of Welcome messages #89

Closed
bifurcation opened this issue Jan 13, 2019 · 0 comments
Closed

Encryption of Welcome messages #89

bifurcation opened this issue Jan 13, 2019 · 0 comments
Labels
privacy security

Comments

@bifurcation
Copy link
Collaborator

This was resolved in #80, but recording it in this issue for posterity. A Welcome message carries the init_secret value for the group, and so it needs to be encrypted for the new joiner.

The struct proposed in the revised draft wraps the information in the Welcome in an ECIES ciphertext, and adds enough information to enable the joiner to identify the private key it needs to decrypt the Welcome message.

struct {
  opaque group_id<0..255>;
  uint32 epoch;
  optional<Credential> roster<1..2^32-1>;
  optional<PublicKey> tree<1..2^32-1>;
  opaque transcript_hash<0..255>;
  opaque init_secret<0..255>;
} WelcomeInfo;

struct {
  opaque user_init_key_id<0..255>;
  CipherSuite cipher_suite;
  ECIESCiphertext encrypted_welcome_info;
} Welcome;
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
privacy security
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bifurcation @beurdouche @seanturner