0008622: TCP and UDP communicator symmetric encryption

ID	Project	Category	View Status	Date Submitted	Last Update

0008622	GNUnet	transport service	public	2024-03-10 12:28	2025-10-20 17:26

Reporter	schanzen	Assigned To	schanzen
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	closed	Resolution	fixed
Target Version	0.26.0	Fixed in Version	0.22.0

Summary	0008622: TCP and UDP communicator symmetric encryption
Description	We should update our encryption scheme for the baseline encryption. Currently, we use an AES/Twofish double encryption. Instead, I propose we use a more standard KDF with XSalsa20 (or ChaCha) as stream cipher, probably with Poly1305.
Additional Information	Probably protocol breaking and considered 0.22
Tags	No tags attached.

Date Modified	Username	Field	Change
2024-03-10 12:28	schanzen	New Issue
2024-03-10 12:42	schanzen	Note Added: 0021829
2024-08-26 12:24	schanzen	Target Version	0.22.0 => 0.23.0
2024-11-14 09:46	schanzen	Target Version	0.23.0 => 0.24.0
2025-02-17 14:26	schanzen	Target Version	0.24.0 => 0.25.0
2025-09-16 12:09	schanzen	Target Version	0.25.0 => 0.26.0
2025-09-22 09:11	schanzen	Assigned To	=> schanzen
2025-09-22 09:11	schanzen	Status	new => resolved
2025-09-22 09:11	schanzen	Resolution	open => fixed
2025-09-22 09:11	schanzen	Fixed in Version	=> 0.22.0
2025-10-20 17:26	schanzen	Status	resolved => closed

schanzen 2024-03-10 12:42 administrator ~0021829	Note that we already switched to AES-256-CTR some time ago for the TCP communicator and AES-256-GCM for the UDP communicator.