X-Git-Url: http://www.git.cypherpunks.ru/?p=govpn.git;a=blobdiff_plain;f=doc%2Fdeveloper.texi;h=15e87800a314b44604730747b9a0610ab91c8f02;hp=b257885b02858362b7ff9a4b72f2d9cddbe8701d;hb=0bf04621961589bc735dc8bd8a075d7db24c4178;hpb=1bca6f147bf4f16cbea245e1eaac5dc74526a7b4

diff --git a/doc/developer.texi b/doc/developer.texi
index b257885..15e8780 100644
--- a/doc/developer.texi
+++ b/doc/developer.texi
@@ -1,25 +1,50 @@
-@node Developer manual
+@node Developer
 @unnumbered Developer manual
 
+Pay attention how to get @ref{Sources, development source code}.
+
 @table @asis
-@item Nonce and identification encryption
-@url{http://143.53.36.235:8080/tea.htm, XTEA}
 @item Data encryption
-@url{http://cr.yp.to/snuffle.html, Salsa20}
+    @url{https://cr.yp.to/chacha.html, ChaCha20}.
 @item Message authentication
-@url{http://cr.yp.to/mac.html, Poly1305}
+    @url{https://cr.yp.to/mac.html, Poly1305}.
+@item Nonce and identity obfuscation
+    @url{https://blake2.net/, BLAKE2b-MAC}.
 @item Password authenticated key agreement
-DH-EKE powered by @url{http://cr.yp.to/ecdh.html, Curve25519}
+    DH-A-EKE powered by @url{https://cr.yp.to/ecdh.html, Curve25519}
+    and @url{https://ed25519.cr.yp.to/, Ed25519}.
+@item DH elliptic-curve point encoding for public keys
+    @url{https://elligator.cr.yp.to/, Elligator}.
+@item Verifier password hashing algorithm
+    @url{https://crypto.stanford.edu/balloon/, Balloon hashing} based
+    on BLAKE2b-256.
+@item Encryptionless confidentiality preserving encoding
+    @url{http://people.csail.mit.edu/rivest/chaffing-980701.txt,
+    Chaffing-and-Winnowing} (two Poly1305 MACs for each bit of message)
+    over 128 bits of
+    @url{http://theory.lcs.mit.edu/~cis/pubs/rivest/fusion.ps,
+    All-Or-Nothing-Transformed} (based on
+    @url{http://cseweb.ucsd.edu/~mihir/papers/oaep.html, OAEP} using
+    ChaCha20 with BLAKE2b-256 based
+    @url{http://crypto.stanford.edu/~dabo/abstracts/saep.html, SAEP+}
+    checksums) data with 128-bits of feeded random.
 @item Packet overhead
-24 bytes per packet
+    25 bytes per packet. Plus 4128 bytes and noise in encryptionless mode.
 @item Handshake overhead
-4 UDP (2 from client, 2 from server) packets, 200 bytes total payload
+    4 UDP (2 from client, 2 from server) packets (round-trips for TCP).
+    264 bytes total payload, 20680 in encryptionless mode.
+@item Entropy required
+    832 bits in average on client, 832 bits in average on server side
+    per handshake. 128 bits for each outgoing packet in encryptionless
+    mode.
 @end table
 
 @menu
-* Transport protocol::
-* Handshake protocol::
+* Verifier structure::
+* Transport protocol: Transport.
+* Handshake protocol: Handshake.
 @end menu
 
+@include verifierstruct.texi
 @include transport.texi
 @include handshake.texi