Hello all,
Inspired by a conversation with arma, I have been working on designing a UDP based protocol to serve as the bulk data transport for something along the lines of "obfs3, but over UDP". The spec document is approaching the point where I would like to have increased public review before I go and implement it. People who sit in #tor-dev probably have seen various revisions of this draft already.
Some notes: * This is heavily inspired by SSU from the i2p project, and Dust by Brandon Wiley. * Ensuring that data gets delivered reliably and in order is outside the scope of this document. Such things are a well researched problem so my reference implementation will likely draw upon an existing protocol instead of reinventing the wheel here. * As far as existing work in this area, the only other protocols that attempt to do similar things are i2p's SSU and Dust. * LODP assumes that there is a shared secret between peers to attempt to thwart active probing attacks. * As part of my evil plans, "secure fingerprinting resistant UDP" is something useful to have. * Open questions/things that are subject to change are tagged with XXX.
Questions, comments, feedback appreciated.
Hello all,
I didn't get much review on my first draft due to recent craziness and people being generally busy, but I've been slowly poking at LODP as time allows. I've went and made some modifications to the initial draft that I posted to tor-dev@, and made some tentative steps towards writing the accompanying PT (UDT over LODP).
Major changes since last revision: * Replaced SHA-256 with BLAKE2s, and switched to using BLAKE2s' native keyed hash support instead of HMAC where appropriate. * Added support for rekeying. * Fixed typeos.
Questions, comments, feedback all appreciated,
-
Yawning Angel