wholetrans/docs-matrix-spec
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add megolm messaging algorithm subsection

Browse source 
This was written by Richard van der Hoff.
This commit is contained in:
Valentin Deniaud 2018-06-06 16:12:31 +02:00
parent 33802dbbaf
commit 07e3de3c61
1 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

12
specification/modules/end_to_end_encryption.rst
View file

@ -321,6 +321,17 @@ be able to change the room a message was sent in.
Clients must confirm that the ``sender_key`` belongs to the user that sent the
message. TODO: how?
``m.megolm.v1.aes-sha2``
~~~~~~~~~~~~~~~~~~~~~~~~
The name ``m.megolm.v1.aes-sha2`` corresponds to version 1 of the Megolm
ratchet, as defined by the `Megolm specification`_. This uses:
* HMAC-SHA-256 for the hash ratchet.
* HKDF-SHA-256, AES-256 in CBC mode, and 8 byte truncated HMAC-SHA-256 for authenticated encryption.
* Ed25519 for message authenticity.
Protocol definitions
--------------------
@ -381,6 +392,7 @@ Example response:
.. _ed25519: http://ed25519.cr.yp.to/
.. _curve25519: https://cr.yp.to/ecdh.html
.. _`Olm specification`: http://matrix.org/docs/spec/olm.html
.. _`Megolm specification`: http://matrix.org/docs/spec/megolm.html
.. _`Signing JSON`: ../appendices.html#signing-json