From e0c8bab5d7a97d539a5364c962cd5861430432a0 Mon Sep 17 00:00:00 2001
From: Itamar Turner-Trauring <itamar@itamarst.org>
Date: Fri, 22 Oct 2021 10:32:44 -0400
Subject: [PATCH] Add proposal on how to generate upload secret.

---
 docs/proposed/http-storage-node-protocol.rst | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/docs/proposed/http-storage-node-protocol.rst b/docs/proposed/http-storage-node-protocol.rst
index 16db0fed9..d5b6653be 100644
--- a/docs/proposed/http-storage-node-protocol.rst
+++ b/docs/proposed/http-storage-node-protocol.rst
@@ -459,7 +459,13 @@ For example::
 
   {"already-have": [1, ...], "allocated": [7, ...]}
 
-The session secret is an opaque _byte_ string.
+The uplaod secret is an opaque _byte_ string.
+It will be generated by hashing a combination of:b
+
+1. A tag.
+2. The storage index, so it's unique across different source files.
+3. The server ID, so it's unique across different servers.
+4. The convergence secret, so that servers can't guess the upload secret for other servers.
 
 Discussion
 ``````````
@@ -492,6 +498,13 @@ In the short term, they can just be a random byte string.
 The key security constraint is that each upload to each server has its own, unique upload key,
 tied to uploading that particular storage index to this particular server.
 
+Rejected designs for upload secrets:
+
+* Upload secret per share number.
+  In order to make the secret unguessable by attackers, which includes other servers,
+  it must contain randomness.
+  Randomness means there is no need to have a secret per share, since adding share-specific content to randomness doesn't actually make the secret any better.
+
 ``PATCH /v1/immutable/:storage_index/:share_number``
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!