aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRasmus Dahlberg <rasmus.dahlberg@kau.se>2021-03-17 13:15:08 +0100
committerRasmus Dahlberg <rasmus.dahlberg@kau.se>2021-03-17 13:15:08 +0100
commit838e268e6563f9d361497ce7cab82545d69cff66 (patch)
tree6a1b8953992ff57f657aacbb95e580b2984f5eeb
parent1aeea6e06024951e3140fd48e4ae9aa50b321fef (diff)
defined artifact
-rw-r--r--README.md13
1 files changed, 7 insertions, 6 deletions
diff --git a/README.md b/README.md
index 4f4692e..dfea8b9 100644
--- a/README.md
+++ b/README.md
@@ -1,11 +1,12 @@
# System Transparency Front-End (STFE)
-STFE is a Trillian personality that allows you to transparency log signed
-artifact checksums. A client consuming artifacts may enforce that such logging
-takes place by mandating that there is a public trace of each artifact before
-even considering to trust it. We refer to such a trace as a signed checksum
-entry: it is composed of
+STFE is a Trillian personality that allows you to log signed artifact checksums.
+A client consuming artifacts (such as a browser update, a Debian package, a document,
+or more generally anything opaque) may enforce that such logging takes place by
+mandating that there is a public trace of each artifact before even considering
+to trust it. We refer to such a trace as a signed checksum entry: it is
+composed of
an arbitrary identifier like `stfe_client v0.0.1`,
- an artifact checksum,
+ a checksum,
a signature, and
a namespace that is derived from the public verification key.
Tracking checksums as opposed to full-on artifacts makes it less costly to