X-Git-Url: http://www.git.cypherpunks.ru/?a=blobdiff_plain;f=doc%2Fverifierstruct.texi;h=792506dd9f93ac95f4509998c07b8ce2db8cbf14;hb=9364defa689e91c6fb54651876fbf2d02eec35ec;hp=65a4e086c14d7fbf8e5fd896fc4145c05845e077;hpb=17c2f7327a0178dd61a8a2afa26a0dda383154a9;p=govpn.git

diff --git a/doc/verifierstruct.texi b/doc/verifierstruct.texi
index 65a4e08..792506d 100644
--- a/doc/verifierstruct.texi
+++ b/doc/verifierstruct.texi
@@ -6,11 +6,17 @@ dictionary attacks and can not be used for authentication (only
 its verifying).
 
 @verbatim
-SOURCE = PBKDF2(SALT=PeerId, PASSWORD, 1<<16, SHA512)
+SOURCE = Argon2d(m, t, p, SALT=PeerId, PASSWORD)
 PUB, PRIV = Ed25519.Generate(SOURCE)
 @end verbatim
 
-Verifier is @code{PUB} public key of Ed25519 generated from the PBKDF2
-of the passphrase in hexadecimal encoding. @code{PeerId} is used as a
-128-bit salt. Server stores and knows only verifier. Client can compute
-the whole keypair every time he makes handshake.
+Verifier is serialized representation of public data above:
+@verbatim
+$argon2d$m=m,t=t,p=p$Base64(SALT)$Base64(PUB)
+@end verbatim
+
+m, t and p parameters are Argon2d-specific: memory, iterations and
+parallelizm parameters.
+
+Server stores and knows only verifier. Client can compute the whole
+keypair every time he makes handshake.