[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-SVN] [taler-anastasis] branch master updated (52379d1 -> dde4424
|
From: |
gnunet |
|
Subject: |
[GNUnet-SVN] [taler-anastasis] branch master updated (52379d1 -> dde4424) |
|
Date: |
Tue, 20 Aug 2019 10:39:09 +0200 |
This is an automated email from the git hooks/post-receive script.
dennis-neufeld pushed a change to branch master
in repository anastasis.
from 52379d1 Discarded last change: Added specification of the purpose of
the masterkey to DecryptionPolicy
new 6e2bcd4 Terms more clearly defined: Escrow provider is our backup
provider, key provider stores the key shares
new dde4424 Corrected some syntax failures
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
src/api/api-anastasis.rst | 34 ++++++++++++++++++++++++++--------
1 file changed, 26 insertions(+), 8 deletions(-)
diff --git a/src/api/api-anastasis.rst b/src/api/api-anastasis.rst
index d4bae1d..4745f80 100644
--- a/src/api/api-anastasis.rst
+++ b/src/api/api-anastasis.rst
@@ -48,7 +48,7 @@ EdDSA public key.
The escrow provider responds with an `EncryptedPolicyDocument`_ object.
This request should
virtually always be successful, if the account exists.
- X-Anastatis-Version: $NUMBER --- return actual version number in header;
+ X-Anastasis-Version: $NUMBER --- return actual version number in header;
(if not specified in request, return latest).
**Details:**
@@ -69,33 +69,43 @@ EdDSA public key.
}
- .. _PolicyDocument:
- .. code-block:: tsref
+ .. _PolicyDocument:
+ .. code-block:: tsref
interface PolicyDocument {
- // List of escrow providers and selected authentication method
+ // List of key providers and selected authentication method
methods: EscrowMethod[];
// List of possible decryption policies
policy: DecryptionPolicy[];
- // Account identifier at backup provider, AES-encrypted with
+ // Account identifier at escrow provider, AES-encrypted with
// (symmetric) master_key, i.e.
// https://sync.taler.net/ + private key
backup_account: byte[];
}
+ .. _EscrowMethod:
+ .. code-block:: tsref
+
interface EscrowMethod {
+ // URL of the key provider
provider_url : string;
+ // Name of the escrow method (e.g. security question, SMS etc.)
escrow_method: string;
+ // UUID of the escrow method
uuid: uuid;
salt: byte[32];
+
}
+ .. _DecryptionPolicy:
+ .. code-block:: tsref
+
interface DecryptionPolicy {
salt: byte[32];
@@ -110,6 +120,7 @@ EdDSA public key.
// Name of the service/program the masterkey is for (e.g. GNU Taler
Wallet No.1,
// GNU Taler Wallet No.2, KeePass No.1 etc.)
name: string;
+
}
@@ -214,20 +225,27 @@ EdDSA public key.
// Authentication token (i.e. as received via SMS/E-mail)
token? : string;
+
}
- .. _Recovery:
+ .. _Recovery:
.. code-block:: tsref
interface Recovery {
// Escrow recovery nonce
key: byte[32];
+
}
- .. _EscrowChallenge:
- .. code-block:: tsref
+ .. _EscrowChallenge:
+ .. code-block:: tsref
interface EscrowChallenge {
+ // ground truth, i.e. challenge question,
+ // phone number, e-mail address, picture, fingerprint, ...
truth: byte[];
+
+ // mime type of truth, i.e. text/ascii, image/jpeg, etc.
truth_mime: string;
+
}
--
To stop receiving notification emails like this one, please contact
address@hidden.
- [GNUnet-SVN] [taler-anastasis] branch master updated (52379d1 -> dde4424),
gnunet <=