Both processes need their security improved. In [#GLEPxx+2] we will discuss +
Both processes need their security improved. In [GLEPxx2] we will discuss how to improve the security of the first process. The relatively speaking simpler process of file distribution will be described in -[#GLEP58]. Since it can be implemented without having to change the +[GLEP58]. Since it can be implemented without having to change the workflow and behaviour of developers we hope to get it done in a reasonably short timeframe.
@@ -211,7 +211,7 @@ fully authorized to provide materials for distribution. Partial protection can be gained by Portage and Infrastructure changes, but the real improvements needed are developer education and continued -vigilance. This is further discussed in [#GLEPxx+2]. +vigilance. This is further discussed in [GLEPxx2].This security is still limited in scope - protection against compromised developers is very expensive, and even complex systems like peer review / multiple signatures can be broken by colluding developers. There are many @@ -224,7 +224,7 @@ that Gentoo infrastructure and the mirrors are not a weak point. This objective is actually much closer than it seems already - most of the work has been completed for other things!. This is further discussed in -[#GLEP58]. As this process has the most to gain in security, and the +[GLEP58]. As this process has the most to gain in security, and the most immediate impact, it should be implemented before or at the same time as any changes to process #1. Security at this layer is already available in the signed daily snapshots, but we can extend it to cover @@ -361,33 +361,55 @@
[#GLEPxx+2] Future GLEP on Developer Process security. -[#GLEPxx+3] Future GLEP on GnuPG Policies and Handling.
+| [C08a] | Cappos, J et al. (2008). "Package Management Security". +University of Arizona Technical Report TR08-02. Available online +from: ftp://ftp.cs.arizona.edu/reports/2008/TR08-02.pdf |
| [C08b] | Cappos, J et al. (2008). "Attacks on Package Managers" +Available online at: +http://www.cs.arizona.edu/people/justin/packagemanagersecurity/ |
| [GLEP58] | Security of distribution of Gentoo software - Infrastructure to User distribution - MetaManifest +http://www.gentoo.org/proj/en/glep/glep-0058.html |
| [GLEPxx2] | Future GLEP on Developer Process security. |
| [GLEPxx3] | Future GLEP on GnuPG Policies and Handling. |
Copyright (c) 2005-2010 by Robin Hugh Johnson. This material may be distributed only subject to the terms and conditions set forth in the Open Publication License, v1.0.
-vim: tw=72 ts=2 expandtab:
+