create new section "General Procedure"

2024-11-24 10:12:19 -05:00 · 2019-03-09 20:28:37 +01:00 · 2019-03-09 20:28:37 +01:00 · 7adb7769f5
commit 7adb7769f5
parent 8347c38889
1 changed files with 44 additions and 0 deletions
--- a/inbox/automatic-trust-transfer.xml
+++ b/inbox/automatic-trust-transfer.xml
@ -132,6 +132,50 @@
 		Thus, less user interaction is needed for authenticating all keys involved in the secure communication while preserving the same security level.
 	</p>
 </section1>
+<section1 topic='General Procedure' anchor='general-procedure'>
+	<p>
+		This section explains the basic procedure of autmomatically authenticating or revoking a key by a trust message.
+		It does not specify the detailed behaviour which can be found in section <link url='#usecases'>Use Cases</link>.
+		Instead, this section should rather show the fundamental idea behind it.
+	</p>
+	<section2 topic='Authentication' anchor='general-procedure-authentication'>
+		<ol>
+			<li>
+				<p>
+					Device 1 manually authenticates the key of device 2.
+					Device 1 automatically sends an authentication message for device 2's key to devices whose keys it has already authenticated and an authentication message for the keys of those devices to device 2.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 2 manually authenticates the key of device 1.
+					Device 2 automatically sends an authentication message for device 1's key to devices whose keys it has already authenticated and an authentication message for the keys of those devices to device 1.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 1 automatically authenticates the keys of the authentication message from device 2.
+					Each device receiving an authentication message from device 1 automatically authenticates device 2's key, if device 1's key has already been authenticated by it.
+					Each device receiving an authentication message from device 2 automatically authenticates the corresponding keys, if device 2's key has been authenticated by it.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 2 automatically authenticates the keys of the authentication message from device 1.
+					Each device receiving an authentication message from device 2 automatically authenticates device 1's key, if device 2's key has already been authenticated by it.
+					Each device receiving an authentication message from device 1 automatically authenticates the corresponding keys, if device 1's key has been authenticated by it.
+				</p>
+			</li>
+		</ol>
+	</section2>
+	<section2 topic='Revocation' anchor='general-procedure-revocation'>
+		<p>
+			Device 1 manually revokes the trust in the key of device 2.
+			Device 1 automatically sends a revocation message for device 2's key to devices whose keys it has already authenticated.
+			Each device receiving a revocation message from device 1 automatically revokes the trust in device 2's key, if device 1's key has already been authenticated by it.
+		</p>
+	</section2>
+</section1>
 <section1 topic='Trust Message URI' anchor='trust-message-uri'>
 	<p>
 		A trust message contains an <cite>XMPP URI</cite> (see &xep0147;) defined by the following scheme: