Revision as of 08:07, 7 February 2006 edit F (talk \| contribs) Extended confirmed users, Pending changes reviewers, Rollbackers 5,590 edits →History: rephrase, +link ← Previous edit		Revision as of 09:14, 9 February 2006 edit undo F (talk \| contribs) Extended confirmed users, Pending changes reviewers, Rollbackers 5,590 edits m →Operation: +link Next edit →
Line 17: The BitComet PHE method is not published. It is incompatible with MSE/PE. MSE/PE uses a [[D-H]] exchange combined with the infohash of the torrent to establish the key, then it uses [[RC4]] to encrypt the data. The D-H exchange helps minimizing the risk of passive listeners, and the infohash helps avoiding [[man-in-the-middle attack]]s. RC4 is chosen for its speed. The first kilobyte of the RC4 output is discarded to prevent a [[RC4#Fluhrer, Mantin and Shamir attack\|Fluhrer, Mantin and Shamir attack]]. The specification allows the users to choose between encrypting the headers only or the full connection. Encrypting the full connection provides more obfuscation but uses more CPU time. However, PE in µTorrent beta 1.4.1 build 417 or later only supports full encryption for outgoing connections, but will accept both obfuscation levels for incoming connections. To ensure compatibility with other clients that don't support this specification users may also choose whether unencrypted incoming or outgoing connections are still allowed.

BitTorrent protocol encryption: Difference between revisions