[tahoe-lafs-trac-stream] [tahoe-lafs] #1874: Non-Repudiation Not covered in Integrity
tahoe-lafs
trac at tahoe-lafs.org
Thu Nov 22 07:00:45 UTC 2012
#1874: Non-Repudiation Not covered in Integrity
-------------------------------------------------+-------------------------
Reporter: calltodsi | Owner:
Type: defect | Narendiran
Priority: supercritical | Status: new
Component: code-mutable | Milestone: 1.11.0
Keywords: Mutable, Integrity, non-repudiation | Version: 1.9.2
lack | Launchpad Bug:
-------------------------------------------------+-------------------------
I have been testing the LAFS-Tahoe V1.9.2 package. It is observed that
during the user/storage-server uploading and downloading(files) processes
there is a lack that one critical link missing that is required to track
data stored in cloud storage.
Though communication is happening over SSL, a user/server may refuse the
sender's/receiver's certificate. So any one of them could be malicious.
Atleast there should be a signed message digest.
So, while uploading a document how a user can trust the Storage Server.
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1874>
tahoe-lafs <https://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list