aboutsummaryrefslogtreecommitdiff
path: root/doc
Commit message (Collapse)AuthorAgeFilesLines
* BGP announcments might have higher requirements on timelinessLinus Nordberg2021-10-021-2/+1
| | | | | | | | They're also not typically communicated in a repository of any kind. BGP updates _could_ of course be logged for non-realtime historical storage (archiving) but as an example this early in the text it's mostly confusing.
* refactored design.md so that it is mostly up-to-dateRasmus Dahlberg2021-10-021-99/+116
| | | | | | | | | - Improved introduction so that it gives a better intuition of how we think about sigsum logging and what our contribution actually is - Clarified that monitoring is a 4th step (monkey-patched) - Added checkpoint as part of our design description - Emphasized witnessing at the start of 'how it works' - A bunch of minor edits and clarifications
* refactored introduction, mostly minor editsRasmus Dahlberg2021-10-021-22/+23
|
* started to restructure and refactor the q/a sectionRasmus Dahlberg2021-10-021-66/+34
|
* continued refactor of design description, bird's viewRasmus Dahlberg2021-10-021-116/+176
|
* started on a refactored design descriptionRasmus Dahlberg2021-10-021-19/+96
|
* clarified that what is logged is a minimal statementRasmus Dahlberg2021-09-281-1/+1
| | | | A claimant may add additional implicit claims via policy.
* fixed endpoint examplesRasmus Dahlberg2021-09-281-13/+28
| | | | | | - Better readability with full code blocks - Replaced localhost with <base url> - Generated new add-leaf example that should be valid
* minor edits and typo fixesRasmus Dahlberg2021-09-281-8/+9
|
* removed unused Trunnel structureRasmus Dahlberg2021-09-281-13/+5
|
* noted that verified timestamps have more use-casesRasmus Dahlberg2021-09-281-2/+4
| | | | | | | | | | | | | | | | | | | | | | | | A believer can be convinced that a sigsum was logged after time T. This is because witnesses do Verifier(append-only) and Verifier(Freshness). Outline: a claimant is about to log a sigsum. 1. Fetch the most recent cosigned tree head. - Timestamp is T - Tree size is N 2. Submit sigsum for logging. 3. Wait for inclusion at index N+k, k=>0. 4. Wait for next cosigned tree head. - Timestamp is T', where T' > T - Tree size is N', where N' > N+k 5. Download inclusion proof for tree size N'. Now you can convince a believer that a sigsum is publicly logged. Just reveal inclusion proof which leads up to the second cosigned tree head. Next, you can reveal the first cosigned tree head that _have not merged that entry yet_. This follows from the first cosigned tree head size, and makes it obvious that the entry must have been merge after time T.
* added a second take on api refactoringRasmus Dahlberg2021-09-061-178/+186
| | | | | | | | - Kept current formats and parsers - Added key_hash in tree_head to protect against an attack - Removed mentions of old terminology, e.g., submitter and end-user. - Referenced some of our persisted discuss pads for additional context. - Minor edits
* fixed s/st/sigsum in design.mdRasmus Dahlberg2021-06-251-17/+22
|
* fixed s/st/sigsum in api.mdRasmus Dahlberg2021-06-251-30/+27
|
* imported logging docs without any changesRasmus Dahlberg2021-06-223-0/+693