Skip to content
This repository has been archived by the owner on Dec 14, 2021. It is now read-only.
/ paper_chainiac Public archive

Implementation and simulations for "CHAINIAC: Proactive Software-Update Transparency via Collectively Signed Skipchains and Verified Builds" paper appearing at Usenix Security'17.

23 stars 4 forks
Star
Notifications

dedis/paper_chainiac

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
2 branches 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
bftcosi
 
 
manage
 
 
repositories
 
 
simulation
 
 
skipchain
 
 
swupdate
 
 
timestamp
 
 
.gitignore
 
 
README.md
 
 
api.go
 
 
api_test.go
 
 
debianupdate.go
 
 
debianupdate_test.go
 
 
migrate.sh
 
 
package.go
 
 
package_test.go
 
 
repository.go
 
 
repository_test.go
 
 
struct.go
 
 
CHAINIAC Installation Dependencies Retrieving test data Simulation

README.md

CHAINIAC

Chainiac is an update framework that provides decentralized enforcement of development and release processes, independent verification of source-to-binary correspondence, transparency via a collectively-signed update timeline, and efficient release validation by arbitrarily out-of-date clients. This repository contains the bare-bone source code of the system and the code necessary to reproduce the experiments in the corresponding paper.

Installation

If you do not have Golang installed, start with

  • Install Golang
  • Set $GOPATH to point to your workspace directory
  • Add $GOPATH/bin to $PATH

Dependencies

To get Go dependencies of the project, execute

go get -u ./...

We use Python to extract metadata of Debian packages and snapshots of the Debian repository. You need to install

  1. Python 3.5 or later
  2. BeautifulSoup4 and lxml libraries for processing HTML and XML files

Retrieving test data

Go to repositories/ and run ./get_files.sh to retrieve the list of the most downloaded Debian packages from http://popcon.debian.org/. Then run

python3 get_repo_3.5.py

or

python get_repo.py

to retrieve the snapshots of the Debian testing repository used in the experiments. This might take a while.

Simulation

Go to simulation/ and execute

go build .

This will build a simulation binary. You can reproduce the experiments from the paper by running the binary with a toml configuraiton file as an argument.

About

Implementation and simulations for "CHAINIAC: Proactive Software-Update Transparency via Collectively Signed Skipchains and Verified Builds" paper appearing at Usenix Security'17.

Resources

Readme

Stars

23 stars

Watchers

17 watching

Forks

4 forks

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages