Re: [Tails-dev] draft proposal: secure, censor resistant, di…

このメッセージを削除

このメッセージに返信
著者: intrigeri
日付:  
To: The Tails public development discussion list
題目: Re: [Tails-dev] draft proposal: secure, censor resistant, distributed project metadata, please review
Hi,

adrelanos wrote (02 Jan 2013 16:27:46 GMT) :
> I propose a mechanism to securely download project metadata, which
> includes censor resistance, prevents feeding old/outdated project
> metadata and load balancing.


I suggest having a look at TUF, and especially their security
documentation: https://www.updateframework.com/wiki/Docs/Security.

Its implementation did not look mature enough when we started to
implement Tails incremental updates, but it was a year ago, so perhaps
things have changed significantly since then :)

(I can't remember nor find if I suggested it already, so I beg your
pardon if I'm repeating myself.)

Cheers,
--
intrigeri
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc