/
authenticator.h
85 lines (69 loc) · 2.84 KB
/
authenticator.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
/*
* Copyright (c) 2015 Tim Ruffing <tim.ruffing@mmci.uni-saarland.de>
*
* Permission is hereby granted, free of charge, to any person
* obtaining a copy of this software and associated documentation
* files (the "Software"), to deal in the Software without
* restriction, including without limitation the rights to use,
* copy, modify, merge, publish, distribute, sublicense, and/or sell
* copies of the Software, and to permit persons to whom the
* Software is furnished to do so, subject to the following
* conditions:
*
* The above copyright notice and this permission notice shall be
* included in all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
* EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
* OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
* NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
* HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
* WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
* FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
* OTHER DEALINGS IN THE SOFTWARE.
*
*/
#ifndef AUTHENTICATOR_H
#define AUTHENTICATOR_H
#include "chameleonhash.h"
#include "prf.h"
class Authenticator
{
public:
// Length of context in bytes. This is configurable via the ACCA_CT_LEN variable in cmake.
static const size_t CT_LEN = ACCA_CT_LEN;
// Depth is number of non-root levels.
static const size_t DEPTH = CT_LEN * 8;
// Authentication tokens are 4160 bytes long. By compressing the sign bytes into bit vectors,
// we could additionally save 60 bits.
static const size_t TOKEN_LEN = DEPTH * (ChameleonHash::HASH_LEN + ChameleonHash::RAND_LEN);
typedef std::array<unsigned char, CT_LEN> ct_t;
typedef std::vector<unsigned char> st_t;
typedef ChameleonHash::sk_t dsk_t;
struct dpk_t {
ChameleonHash::pk_t chpk;
ChameleonHash::digest_t rootDigest;
};
struct token_t {
std::array<ChameleonHash::hash_t, DEPTH> chs;
std::array<ChameleonHash::rand_t, DEPTH> rs;
};
Authenticator(const Authenticator::dsk_t& dsk);
Authenticator(const Authenticator::dpk_t& dpk);
void authenticate(token_t& t, const ct_t& ct, const st_t &st);
bool verify(const token_t& t, const ct_t& ct, const st_t &st);
void extract(const token_t& t1, const token_t& t2, const ct_t& ct, const st_t& st1, const st_t& st2);
Authenticator::dpk_t getDpk();
Authenticator::dsk_t getDsk();
private:
dsk_t dsk;
ChameleonHash::digest_t rootDigest;
ChameleonHash ch;
bool hasSecretKey_;
struct log_t {
std::vector<ChameleonHash::hash_t> chs;
std::vector<ChameleonHash::digest_t> xs;
};
bool verifyWithLog(const token_t& t, const ct_t& ct, const st_t &st, log_t* log);
};
#endif // AUTHENTICATOR_H