Hi,
adrelanos wrote (02 Jan 2013 16:27:46 GMT) :
> I propose a mechanism to securely download project metadata, which
> includes censor resistance, prevents feeding old/outdated project
> metadata and load balancing.
I suggest having a look at TUF, and especially their security
documentation:
https://www.updateframework.com/wiki/Docs/Security.
Its implementation did not look mature enough when we started to
implement Tails incremental updates, but it was a year ago, so perhaps
things have changed significantly since then :)
(I can't remember nor find if I suggested it already, so I beg your
pardon if I'm repeating myself.)
Cheers,
--
intrigeri
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
