X-Git-Url: http://www.git.cypherpunks.ru/?p=govpn.git;a=blobdiff_plain;f=doc%2Fencless.texi;h=9513d6ce67f5bd8b473b0a0cb44cabd478e3666f;hp=f6d42810836abd80ed7b453b2a7d0c1b357e808c;hb=0bf04621961589bc735dc8bd8a075d7db24c4178;hpb=2d7f9b64e8af5da9bb4469a01f22fd5171446710 diff --git a/doc/encless.texi b/doc/encless.texi index f6d4281..9513d6c 100644 --- a/doc/encless.texi +++ b/doc/encless.texi @@ -8,14 +8,14 @@ some countries forbids usage of encryption (but again not the authentication). GoVPN provides special encryptionless mode of operation. In this mode it -replaces Salsa20 function used for confidentiality with rather +replaces ChaCha20 function used for confidentiality with rather well-known @url{http://people.csail.mit.edu/rivest/chaffing-980701.txt, Chaffing-and-Winnowing} (CnW) technology. This is rather traffic and resource hungry algorithm, so we use it after @url{http://theory.lcs.mit.edu/~cis/pubs/rivest/fusion.ps, All-Or-Nothing-Transformation} (based on @url{http://cseweb.ucsd.edu/~mihir/papers/oaep.html, Optimal Asymmetric -Encryption Padding}) on the data. It is confidentiality preserving +Encryption Padding}) on the data. This is confidentiality preserving encoding. AONT is just a keyless encoding of the data. CnW uses only @@ -23,15 +23,7 @@ authentication function. Handshake additionally uses Diffie-Hellman and signature algorithms. No encryption and steganography involved. In this mode each outgoing packet became larger on 4128 bytes and -@ref{Noise, noise} is forcefully enabled. So this is rather resource -hungry mode! +@ref{Noise, noise} is forcefully enabled. So this is resource hungry mode! -@strong{Beware}: by default packet serial numbers are still processed -through the XTEA encryption. It is not required for confidentiality and -security, but for randomizing some parts of the traffic to make it -indistinguishable from the noise, for making it more DPI-proof. It -safely can be disabled, turned off or maybe its keys even can be -revealed without security and forward secrecy loss. - -See @code{src/govpn/chaffing} and @code{src/govpn/aont} packages for -details of AONT and chaffing operations. +See @code{govpn/cnw} and @code{govpn/aont} packages for details of AONT +and chaffing operations.