-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Threat model of Parsec #89
Comments
Although the Threat Model has been merged, keeping this for review. |
The Parsec Threat Model can be found at: https://parallaxsecond.github.io/parsec-book/threat_model/threat_model.html |
Some notes from our threat model review discussion: |
On the points raised above:
Agree. We will change that.
That is correct! Will rename Application Identity -> Authentication Token
That is correct! Should add.
Well spot! Those should be assumptions, will find another group of letters.
True! We might be safer by checking that we do not log confidential data. I am sure we can log meaningfull information without being too informative.
That is something we thought separately from the TM (in #122). We should definitely add it in the TM in the Information Disclosure attacks.
We agree that this is a bit light. We created #118 to start thinking about options. Will add HMAC to the list.
That is a good point, and as we are starting developping the Rust Client, we should also think about creating a threat model for it.
Great remark, will do that as soon as the review period for the TM is over.
We will think about adding in our documentation an example of a secure deployment implementing all our operation mitigations. |
Will create issues to address those points as soon as the review period of the TM is over. |
Created:
I've also recently updated #122 to be in sync with the PSA Crypto spec recommendations. |
Service and Rust client TM have now been updated and published, and the recommendations here have all been adressed. |
After having updated our docs and diagrams we need to threat model Parsec.
The text was updated successfully, but these errors were encountered: