Proposed Specification for New Consumer-Server Commnunications

Paul Crowley paul at
Thu Jun 9 15:32:23 PDT 2005

Brad Fitzpatrick wrote:
> I'd like to call it "shared_secret" to distinguish from the server-only
> secrets, and to make it more clear that both parties have that
> shared_secret.

I slightly prefer mac_secret, since it's possible to imagine that future 
protocols might include other secrets.  Or come to think of it, mac_key, 
which is even more straightforward and even shorter.

Thanks for continuing to push for this sort of thing, it's making a 
better protocol in a way that will last.  Brad, you let us know when 
you're tired of changing your Perl code and we'll call a halt to it :-)

> I don't like gx and gy either.  server_public and consumer_public sound
> great.

Done.  Also done the POST thing.
\/ o\ Paul Crowley, paul at

More information about the yadis mailing list