tlsnotary/website
1
0
Fork 0
mirror of https://github.com/tlsnotary/website.git synced 2026-01-06 20:53:56 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
961185c4d43cc41556a6616cd39f32ca61d705cb
website/docs/_spec/verification_steps.md
Hendrik Eeckhaut 961185c4d4 Improved diagrams (dark/light mode support)
2025-05-15 11:46:40 +02:00

1.4 KiB
Raw Blame History

Verification

A Verifier receives the following from the User:

  • domain name (e.g. "tlsnotary.org")
  • signed Session Header
  • openings to the commitments (the plaintext which the User committed to)
  • handshake_data which consists of:
    • server certificate
    • key exchange details
    • client and server random

and performs the following steps to verify the commitments:

  • verify that Session Header was signed by the Notary

  • verify handshake_data against handshake_commitment

  • verify validity of server certificate for the domian name

  • verify that key exchange details were signed by the server certificate

  • use encoder_seed to re-generate encodings and re-create a commitment for the opening plaintext (maybe this step needs to be spelled out in more detail)

  • use merkle_root to check that this re-created commitment is in the Merkle tree

To summarize: the Verifier will only learn those portions of the TLS session transcript which the User chose to reveal. The portions which were not revealed (User's private data) will appear to the Verifier as redacted. Here is an example of what the Verifier output may look like:

Reference in New Issue View Git Blame Copy Permalink