From 7a17f6ca80e3df9e1509dc99d0acdd00f12686e0 Mon Sep 17 00:00:00 2001
From: Adam Ierymenko <adam.ierymenko@gmail.com>
Date: Sat, 27 Jul 2013 16:20:08 -0400
Subject: Add skeleton of certificate-based private network authentication.
 Also remove some old code.

---
 node/Network.hpp | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

(limited to 'node/Network.hpp')

diff --git a/node/Network.hpp b/node/Network.hpp
index a95ae869..6263aa9b 100644
--- a/node/Network.hpp
+++ b/node/Network.hpp
@@ -49,7 +49,20 @@ namespace ZeroTier {
 class NodeConfig;
 
 /**
- * Local membership to a network
+ * A virtual LAN
+ *
+ * Networks can be open or closed.
+ *
+ * Open networks do not track membership. Anyone is allowed to communicate
+ * over them.
+ *
+ * Closed networks track membership by way of timestamped signatures. When
+ * the network requests its configuration, one of the fields returned is
+ * a signature for the identity of the peer on the network. This signature
+ * includes a timestamp. When a peer communicates with other peers on a
+ * closed network, it periodically (and pre-emptively) propagates this
+ * signature to the peers with which it is communicating. Peers reject
+ * packets with an error if no recent signature is on file.
  */
 class Network : NonCopyable
 {
-- 
cgit v1.2.3