[Nfd-dev] Update on NDNCERT protocol
Davide Pesavento
davidepesa at gmail.com
Tue Mar 3 09:15:06 PST 2020
Zhiyi,
On Tue, Mar 3, 2020 at 1:53 AM Zhiyi Zhang <zhiyi at cs.ucla.edu> wrote:
>
> Hi Junxiao,
>
> Thanks for the feedback, here are some questions regarding your comments. Could you please help to clarify?
>
> 1. sec 2.1.2 why we need version + segment components? I understand the use of version component but why bother segment component? What's the benefit of using these two rather than timestamp?
> 2. sec 2.1.2 yes I am considering RSA OAEP, the main reason for using RSA instead of the session key (e.g., ECDH) is the round trip -- ECDH requires an additional round trip to set up the session (which may be too costly for an informational query).
I don't remember we discussed this RSA encryption during the calls.
Can you clarify the use case?
Two more comments, I only took a brief look:
1/ What is the "salt" value used for? It shows up in the NEW Data
content and nowhere else.
2/ "The ECC curve by default is prime256v1": you're not providing any
mechanisms to specify the elliptic curve, so saying "by default"
doesn't make much sense. Effectively only one curve is supported.
Thanks,
Davide
More information about the Nfd-dev
mailing list