blob: b0a403872ea283b95588144e1c0c793744d82ac7 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
|
---
stand_alone: true
ipr: none
cat: info
area: Systems Engineering
wg: OSMORA Standards Group
docname: OAP-0003
title: OSMORA Secure Tunnel Protocol
abbrev: OSTP
lang: en
kw:
- ostp
- secure tunnel
- networking
author:
- role: editor
name: Ian M. Moffett
org: OSMORA
city: Washington, DC
region: Southeast
code: 20020
email: ian@osmora.org
--- abstract
The OSMORA Secure Tunnel Protocol is highly flexible and secure network protocol
designed for peer-to-peer and client-server relay communication.
--- middle
# Introduction
OSTP is a highly flexible protocol designed for establishing a secure link
between two or more peers. The design of OSTP makes it easy to build any
additional protocol(s) on top (e.g., messaging protocols).
## Purpose
The purpose of OSTP is to provide OSMORA members with a secure and trusted method
of communication free of any surveillance. The design of OSTP additionally allows others to build additional protocols on top making it fundamental building
block of future OSMORA secure protocols.
# Requirements Language
{::boilerplate bcp14-tagged}
# Session Requests
If a client wishes to establish a link with a server, it MUST send a Session Request
Packet. Doing so allows the client and server to exchange flags along with required
cryptographic keys. All key exchanges under OSTP are done with forward secrecy using
the Elliptic-curve Diffie–Hellman key agreement protocol.
# Security
All OSTP traffic MUST be under AES-256-GCM and be purely ephemeral. All OSTP nodes, regardless
of being in peer-to-peer mode or not, MUST be stateless and always discard received data after
use.
# References
[OAP-0003] Moffett, I., "OSMORA Secure Tunnel Protocol (OSTP) Rev. 4",
OSMORA Standards Group, OAP-0003 \- https://osmora.org/ostp-rev4.pdf
|
