[guardian-dev] OpenPGP key sync over Tor
Michael Rogers
michael at briarproject.org
Fri Jul 10 06:38:14 EDT 2015
Very cool! A quick thought: if you don't want the server to have any
information about which lookups come from the same source, pick the
intervals between lookups from an exponential distribution, which is
memoryless. (Geometric distribution if you consider time to be discrete.)
The downside is that those distributions have quite long tails, so
sometimes there will be long intervals between lookups for a given key.
Cheers,
Michael
On 10/07/15 10:42, Dominik Schuermann wrote:
> Hey,
>
> just for your interest:
> OpenKeychain now supports Tor for updating keys from HKP keyservers.
> We require the installation of Orbot and route all connections over
> the local SOCKS proxy with OkHttp.
>
> This work has been done by our GSoC student Adithya Abraham Philip who
> will now also work on a background sync that should be scheduled via
> SyncAdapters to retrieve revocation certificates timely. We think
> about ways to route this, e.g., weekly, sync over several Tor nodes to
> make it difficult to correlate key updates. There is a software called
> parcimonie which does something similar for GNU/Linux. If you have
> ideas or suggestions how to improve this, consider writing at
> https://github.com/open-keychain/open-keychain/issues/1337
>
> Regards
> Dominik
> _______________________________________________
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
> To unsubscribe, email: guardian-dev-unsubscribe at lists.mayfirst.org
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x9FC527CC.asc
Type: application/pgp-keys
Size: 1748 bytes
Desc: not available
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20150710/3337059e/attachment.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20150710/3337059e/attachment.sig>
More information about the guardian-dev
mailing list