RFC Refactor PR: Modular Rewrite of Mix Protocol Specification #158
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Ben-PH
reviewed
Jun 18, 2025
Comment on lines
226
to
239
| ### 5.1 Integration with Origin Protocols | ||
|
|
||
| - Derive the AES key and IV: | ||
| libp2p protocols that wish to anonymize messages MUST do so by integrating with the Mix Protocol | ||
| via the Mix Entry and Exit layers. | ||
|
|
||
| $`\text{δ\_aes\_key}_{i} = KDF(\text{"δ\_aes\_key"}\ |\ s_{i})`$ | ||
| - The **Mix Entry Layer** receives messages to be _mixified_ from an origin protocol and forwards them | ||
| to the local Mix Protocol instance. | ||
|
|
||
| $`\text{δ\_iv}_{i} = H(\text{"δ\_iv"}\ |\ s_{i})`$ (truncated to 128 bits) | ||
| - The **Mix Exit Layer** receives the final decrypted message from a Mix Protocol instance and | ||
| forwards it to the appropriate origin protocol instance at the destination over a client-only connection. | ||
|
|
||
| - If $i = L-1$ (_i.e.,_ exit node): | ||
| This integration is external to the Mix Protocol and is not handled by mix nodes themselves. | ||
|
|
||
| $`\delta_i = \text{AES-CTR}(\text{δ\_aes\_key}_{i},\ \text{δ\_iv}_{i}, | ||
| \ 0_{\kappa}\ |\ m)`$, where $m$ is the `message`. | ||
| ### 5.2 Mixify Option |
There was a problem hiding this comment.
This is problematic. This requires functionality changes to the client protocol, and causes several issues:
- bugs: when a bug occurs, it's less clear if it's due to the mix code base, or the code-base of the client protocol
- responsibilities: this puts responsibility on the client protocol to provide mix-behavior
- tight coupling: this approach means that mix can only be used with one implimentation of the client protocol.
The alternative should be a means for client protocols to provide specific behaviors that can be hooked into. If a protocol needs to anonymize a message, it would be able to provide some sort of functionality as specified by the mix imprementation, that would allow any given mix-message to have said functionality hooked into. For example:
mix.message(.....).withEntryHook(....).dispatch(....)With this approach:
- If there is a bug that appears to be due to the modified entry-behavior, testing can remove the hook, or replace the provided hook with one known to be working
- The only requirement of a libp2p implementation is to provide an interface that allows for pre-routing through mix, as opposed to intrusive modification of the implementation
- the hooks themselves could theoretically be defined through language agnostic means, making nim-mix compatable with any libp2p implementation that is able to provide the means to do the hooks (this is somewhat dubious)
…om Entry/Exit layers - Clarified that the Mix protocol handles message-based mixnet routing only - Rewrote Section 2.1 to retain sender/intermediary/exit roles with clearer boundaries - Explicitly separated responsibilities of Entry and Exit layers from Mix protocol logic - Moved Background section to follow protocol overview for better flow - Added additional mixing strategy and pluggable component sections
…protection, cover traffic, incentivization)
Cofson
pushed a commit
that referenced
this pull request
Jul 25, 2025
This PR rewrites the Mix Protocol RFC for clarity, layering, and implementability. It reorganizes the spec into a modular structure aligned with RFC 7322 and RFC 2119, with clean separation between protocol logic, integration, and pluggable components. ### Goals - Clearly define Mix as a **message-based routing protocol**, not a transport or application-layer solution. - Support **per-message anonymity** via a `mixify` flag and **external integration** through Entry and Exit layers. - Adopt a clean, layered structure: motivation → integration → routing model → cryptographic structure → node behavior. - Use correct RFC formatting, keywords, and SEMBR for implementation clarity. ### Changes Completed in This PR #### Sections 0–5: Foundational Structure and Protocol Layering * [x] **Abstract**: Concise, non-repetitive summary of protocol purpose and scope. * [x] **§1 Introduction**: Cleanly describes protocol role, document scope, and integration model. * [x] **§2 Terminology**: Defines all key terms; includes correct use of `MUST`, `SHOULD`, and informal variants. * [x] **§3 Motivation and Background**: Articulates need for sender anonymity in libp2p; includes `§3.1 Comparison with Tor`. #### Section 4 Mixing Strategy and Packet Format * [x] **§4.1 Mixing Strategy**: Defines continuous-time mixing; justifies choice over batching. * [x] **§4.2 Packet Format Overview**: Defines what a mix packet must achieve; outlines Sphinx format properties and rationale. #### Section 5 Protocol Overview and Integration * [x] **§5 Protocol Overview**: Clean, layered walkthrough of core protocol behavior and layering in libp2p. * [x] **§5.1 Integration with Origin Protocols**: External interface components (Mix Entry/Exit layers). * [x] **§5.2 Mixify Option**: Per-message flag defined. * [x] **§5.3 Why a Protocol, Not a Transport**: Explains why Mix is layered as a libp2p protocol, not a transport. * [x] **§5.4 Protocol Interaction Flow**: Three-phase diagram and explanation (entry → routing → exit). #### Section 6 Pluggable Components * [x] Discovery: advertise Mix support via ENR, X25519 key * [x] Delay strategy: sender-defined per-hop delay * [x] Spam protection: PoW/VDF/RLN options, exit node validation * [x] Cover traffic: periodic loops for unobservability * [x] Incentivization: nodes MUST participate to send #### Section 7 Core Mix Protocol Responsibilities * [x] Define Sender, Intermediary, Exit node roles * [x] Specify lifecycle and message flow per role #### Section 8 Sphinx Packet Format (Detailed Spec) * [ ] Full field definitions (α, β, γ, δ, delays, MACs) * [ ] Encoding and padding behavior #### Section 9 Node Behavior (Mix Protocol Handler) * [ ] Describe sender node logic: path selection, packet wrapping * [ ] Describe intermediary/exit node behavior: decryption, delay, forwarding #### Section 10 Limitations and Future Work * [ ] SURB-based reply support (unimplemented) * [ ] DoS/Sybil attack surface * [ ] Path overlap, message reordering, end-to-end acks #### Appendices * [ ] Appendix A: Proof-of-Work Example * [ ] Appendix B: ENR-Based Discovery Example
14 tasks
6 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR rewrites the Mix Protocol RFC for clarity, layering, and implementability. It reorganizes the spec into a modular structure aligned with RFC 7322 and RFC 2119, with clean separation between protocol logic, integration, and pluggable components.
Goals
mixifyflag and external integration through Entry and Exit layers.Changes Completed in This PR
Sections 0–5: Foundational Structure and Protocol Layering
MUST,SHOULD, and informal variants.§3.1 Comparison with Tor.Section 4 Mixing Strategy and Packet Format
Section 5 Protocol Overview and Integration
Section 6 Pluggable Components
Section 7 Core Mix Protocol Responsibilities
Section 8 Sphinx Packet Format (Detailed Spec)
Section 9 Node Behavior (Mix Protocol Handler)
Section 10 Limitations and Future Work
Appendices