0003708: check use of session hash vs. session public key in refresh mint crypto

ID	Project	Category	View Status	Date Submitted	Last Update

0003708	Taler	exchange	public	2015-03-09 13:19	2015-03-24 17:57

Reporter	Christian Grothoff	Assigned To	Christian Grothoff
Priority	normal	Severity	major	Reproducibility	N/A
Status	closed	Resolution	fixed
Platform	i7	OS	Debian GNU/Linux	OS Version	squeeze
Product Version	git (master)
Target Version	0.0	Fixed in Version	0.0

Summary	0003708: check use of session hash vs. session public key in refresh mint crypto
Description	There used to be an issue with lifting the mint's signature over the noreveal_index from one session to another (as the sig didn't include the session). As theoretically clients could re-use the private key of the melting session, we need to clearly be careful with using the public key of the melting session to identify the melting session (as it is chosen by the client). We should go over the use of the melting session public key and the hash in the protocol.
Tags	No tags attached.

Date Modified	Username	Field	Change
2015-03-09 13:19	Christian Grothoff	New Issue
2015-03-10 17:05	Christian Grothoff	Summary	check use of session hash vs. session public key in mint crypto => check use of session hash vs. session public key in refresh mint crypto
2015-03-22 14:27	Christian Grothoff	Assigned To	=> Christian Grothoff
2015-03-22 14:27	Christian Grothoff	Status	new => assigned
2015-03-24 16:54	Christian Grothoff	Note Added: 0009046
2015-03-24 16:54	Christian Grothoff	Status	assigned => resolved
2015-03-24 16:54	Christian Grothoff	Fixed in Version	=> 0.0
2015-03-24 16:54	Christian Grothoff	Resolution	open => fixed
2015-03-24 16:54	Christian Grothoff	Target Version	=> 0.0
2015-03-24 17:57	Christian Grothoff	Status	resolved => closed
2016-02-18 15:43	Christian Grothoff	Category	mint => exchange

Christian Grothoff 2015-03-24 16:54 manager ~0009046	Fixed in 73c9949..55959bd