Re: [tor-dev] New Proposal - CAA Extensions for the Tor Rendezvous Specification

27 Apr 2023


      On Tue, Apr 25, 2023 at 01:02:28PM +0100, Q Misell via tor-dev wrote:
...
Security Considerations:
  The second layer descriptor is encrypted and MACed in a way that only a party
  with access to the secret key of the hidden service could manipulate what is
  published there. Therefore, Tor CAA records have at least the same security as
  those in the DNS secured by DNSSEC.
Did you mean "signed"? If it's just encrypted and MACed, then anyone who
can decrypt and check the MAC can also alter the contents, of course.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

Re: [tor-dev] New Proposal - CAA Extensions for the Tor Rendezvous Specification