This repository provides an implementation for the prototype of the collective authority (cothority) framework. The system is based on CoSi, a novel protocol for collective signing which itself builds upon Merkle trees and Schnorr multi-signatures over elliptic curves. CoSi enables authorities to have their statements collectively signed (co-signed) by a diverse, decentralized, and scalable group of (potentially thousands of) witnesses and, for example, could be employed to proactively harden critical Internet authorities. Among other things, one could imagine applications to the Certificate Transparency project, DNSSEC, software distribution, the Tor anonymity network or cryptocurrencies.
The software provided in this repository is highly experimental and under heavy development. Do not use it for anything security-critical. All usage is at your own risk!
- Decentralizing Authorities into Scalable Strongest-Link Cothorities: paper, slides
- Certificate Cothority - Towards Trustworthy Collective CAs: paper
- For questions and discussions please refer to our mailing list.
- Golang 1.5.2+
- DeDiS/crypto
- Available:
- DeterLab
- Localhost
- Planned:
- Docker
- LXC
- Available:
- Timestamping
- Signing
- Shamir-secret-service: regular or tree signing
- Planned:
- Randhound: decentrailzed randomness cothority
- Vote
- CoSi: collective signing
All applications in app/* are stand-alone. Currently, they can be used by deploying to either localhost or DeterLab.
To run a simple signing check on localhost, execute the following commands:
$ go get ./...
$ cd deploy
$ go build
$ ./deploy -deploy localhost simulation/sign_single.toml
If you use the -deploy deterlab option, then you are prompted to enter the name of the DeterLab installation, your username, and the names of project and experiment. There are some flags which make your life as a cothority developer simpler when deploying to DeterLab:
-nobuild: don't build any of the helpers which is useful if you're working on the main code-build "helper1,helper2": only build the helpers, separated by a ",", which speeds up recompiling-range start:end: runs only the simulation-lines includingstartandend. Counts from 0, start and end can be omitted and represent beginning and end of lines, respectively.
For convenience, we recommend that you upload a public SSH-key to the DeterLab site. If your SSH-key is protected through a passphrase (which should be the case for security reasons!) we further recommend that you add your private key to your SSH-agent / keychain. Afterwards you only need to unlock your SSH-agent / keychain once (per session) and can access all your stored keys without typing the passphrase each time.
OSX:
You can store your SSH-key directly in the OSX-keychain by executing:
$ /usr/bin/ssh-add -K ~/.ssh/<your private ssh key>
Make sure that you actually use the ssh-add program that comes with your OSX installation, since those installed through homebrew, MacPorts etc. do not support the -K flag per default.
Linux:
Make sure that the ssh-agent is running. Afterwards you can add your SSH-key via:
$ ssh-add ~/.ssh/<your private ssh key>
You can find more information about CoNode in the corresponding README.
Sets up servers that listen for client-requests, collects all requests and hands them to a root-node for timestamping.
A simple mechanism that is capable of receiving messages and returning their signatures.
Test-implementation of a randomization-protocol based on cothority.
We want to compare different protocols for signing and timestamping uses.
This one runs well and is described in a pre-print from Dylan Visher.
A textbook shamir signing for baseline-comparison against the collective signing protocol.