tls-n / nss-tlsn Goto Github PK
View Code? Open in Web Editor NEWMozilla's NSS library with TLS-N implementation.
License: Mozilla Public License 2.0
Mozilla's NSS library with TLS-N implementation.
License: Mozilla Public License 2.0
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 564 in c7a5845
nss-tlsn/nss/lib/ssl/tlsproof.h
Line 97 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 288 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 1396 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 618 in 5730a7a
It's not clear to me from your website and demo whether a server's TLS code must be modified, in order for a client to generate a non-repudiable proof of what the server said.
In particular, I used your "try it out" form to generate a proof of a HTTPS URL on twitter.com
. (I don't expect Twitter's servers have been updated with your server-side code.) I then used your 'verify a proof' form to check the .PROOF file, and it showed the full conversation, client and server, as a 'valid proof'.
However, other credible sources (such as this Cryptography Stack Overflow answer) suggest there's not enough in a normal session to provide assurance a session transcript is authentic. (In particular, it says either party to the initial handshake could forge a transcript of both sides of the session.)
Can you clarify if your technique overcomes the TLS limitation even with only one side, such as the client with a non-upgraded server, generating the proof?
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 1095 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 1637 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 1366 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 2326 in 5730a7a
It seems to me that the right allocation size should be ss->tlsproofOrderingVectorLen/8 +1
because ss->tlsproofOrderingVectorLen is the size in BIT of the ordering vector.
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 720 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 678 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.h
Line 97 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 2201 in 5730a7a
nss-tlsn/nss/lib/ssl/ssl3con.c
Line 12855 in c7a5845
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 202 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 206 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.h
Lines 57 to 68 in 5730a7a
nss-tlsn/nss/lib/ssl/tlsproof.c
Line 909 in 5730a7a
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.