> When one phone connects to another, it "knows" that the device it's > connecting to is running the hidden service that it is trying to send > a message to. However, the other phone, (the one running the hidden > service), has no idea who is connecting to it.
You can use ping pong handshakes. Or simply sign the message using the private key of the sender (person or onion), queue it for delivery and let the recipient authenticate upon receipt. Might as well encrypt the message while you're at it. > It takes incoming messages that aren't encrypted, > and encrypts them with the public key. You then use your private key > to decrypt them later. I believe the Guardian Project created a > library for encrypted sqlite databases which could come in handy there _______________________________________________ tor-talk mailing list [email protected] https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
