[freenet-dev] Short refs was Re: alternative to #freenet-refs

[Michael Rogers]

Matthew Toseland wrote:
> The pubkey itself for an SSK cannot be encrypted as a node forwarding an SSK 
> has to be able to verify the signature. The data of course is encrypted... 
> but if we use the same pubkey for connection setup, we are giving away a lot 
> of information.

True. We could use the hash of the entire ARK key (including the secret
part) to generate the obfuscation key - that way a node handling the ARK
request won't be able to de-obfuscate the handshake.

Cheers,
Michael