diff options
| author | Rasmus Dahlberg <rasmus.dahlberg@kau.se> | 2021-03-17 13:15:08 +0100 |
|---|---|---|
| committer | Rasmus Dahlberg <rasmus.dahlberg@kau.se> | 2021-03-17 13:15:08 +0100 |
| commit | 838e268e6563f9d361497ce7cab82545d69cff66 (patch) | |
| tree | 6a1b8953992ff57f657aacbb95e580b2984f5eeb /README.md | |
| parent | 1aeea6e06024951e3140fd48e4ae9aa50b321fef (diff) | |
defined artifact
Diffstat (limited to 'README.md')
| -rw-r--r-- | README.md | 13 |
1 files changed, 7 insertions, 6 deletions
@@ -1,11 +1,12 @@ # System Transparency Front-End (STFE) -STFE is a Trillian personality that allows you to transparency log signed -artifact checksums. A client consuming artifacts may enforce that such logging -takes place by mandating that there is a public trace of each artifact before -even considering to trust it. We refer to such a trace as a signed checksum -entry: it is composed of +STFE is a Trillian personality that allows you to log signed artifact checksums. +A client consuming artifacts (such as a browser update, a Debian package, a document, +or more generally anything opaque) may enforce that such logging takes place by +mandating that there is a public trace of each artifact before even considering +to trust it. We refer to such a trace as a signed checksum entry: it is +composed of an arbitrary identifier like `stfe_client v0.0.1`, - an artifact checksum, + a checksum, a signature, and a namespace that is derived from the public verification key. Tracking checksums as opposed to full-on artifacts makes it less costly to |