deployment #7
Closed
deployment #7
Comments
write about attacks and mitigations in conex (each attack a separate issue)
|
no longer accurate, will describe in a separate issue |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
code (library)
sign_index
ignores atm)check_
function,private
constructors?)Publickey
has a type (atm RSA = 0) inConex_data_persistency
, we should add a type and id to signature as well, shouldn't we?Conex_repository
separation:
conex
(still need to parametrise IO, ~~~crypto~~~, and ~~~Logs~~~)conex.unix
(seeConex_persistency
)conex_verify
(binary usingconex-core
withopenssl
crypto provider (todo), usesconex.unix
IO (done), and customLogs
(done))conex.ext
(depends onLogs
andnocrypto
)conex_author
(binary usingconex.ext
andconex.unix
to sign stuff (maybe rename toconex_sign
?))timestamp
service (usingconex.ext
, and a MirageOSConex_persistency
(orConex_provider
): private key material has to be provided via other means (Conex_sign
uses e.g.Unix.getenv "HOME"
)tool (analysis)
tool (verify)
tool (author) - warns on read&verification errors
tool (janitor)
tool (snapshot)
tool (future)
The text was updated successfully, but these errors were encountered: