aboutsummaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorRasmus Dahlberg <rasmus.dahlberg@kau.se>2021-10-07 18:08:15 +0200
committerRasmus Dahlberg <rasmus.dahlberg@kau.se>2021-10-07 18:08:15 +0200
commit238a4b1ac9ae2a91cef28e6d2df9ebd2fbb0e882 (patch)
treee95ebd92128af47d7ffddcd69e3773d16c3ba560 /doc
parentb8b64ee52de9e216fe441aa6ae6d446d1ba719c1 (diff)
fixed bad formulation
Diffstat (limited to 'doc')
-rw-r--r--doc/design.md4
1 files changed, 2 insertions, 2 deletions
diff --git a/doc/design.md b/doc/design.md
index ef32efd..b177f85 100644
--- a/doc/design.md
+++ b/doc/design.md
@@ -295,10 +295,10 @@ an inclusion proof that leads up to a cosigned tree head.
#### 3.2.5 - Verification
A verifier should only accept the distributed data if these criteria hold:
1. The signer's checksum is correct for the distributed data.
-2. The signer's signed statement verifies.
+2. The signer's signed statement is valid for the specified public key.
3. The provided tree head can be reconstructed from the logged leaf and
its inclusion proof.
-4. The provided tree head is from a known log with enough cosignatures.
+4. The provided tree head is from a known log with enough valid cosignatures.
Notice that there are no new outbound network connections for a verifier.
Therefore, a proof of public logging is only as convincing as the tree head that