This weekend I went to a cottage somewhere in the middle of nowhere in Lapland, and spent some time there enjoying the fireplace and brainstorming ideas for iotp2p. Some new stuff for the trackers and especially the authentication came out. Message validation is now changed to use an HMAC, as I feared simply chaining the secret key with the message and then hashing has its weak points, HMAC does a much better job so it’s the way to go.
A general rule I have learned is that when it comes to security you should avoid rolling your own, even when it seems that what you do is perfectly safe.
All in all I think it was a good weekend, connection was practically non existent but I could work locally and relax reading in front of fire. Updated docs in github soon.