Changes between Version 3 and Version 4 of CertSig


Ignore:
Timestamp:
Sep 5, 2008, 3:07:52 AM (16 years ago)
Author:
atisu
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • CertSig

    v3 v4  
    66 * The clients may choose to trust in certain Application Certifiers instead of trusting every application they get from a given project.
    77 * Applications may be automatically deployed on projects (no need to use the code signing key).
    8  * A chain of trust may be built for any application which allows to identify the entities responsible for any given application
     8 * A chain of trust may be built for any application which allows to
     9   * identify the entities responsible for any given application
     10   * trust application(s) from untrusted projects
    911 
    1012Whom is it useful ? Probably for most Projects the key based signing method is enough. In our case (SZTAKI) we are developed a method to interconnect different BOINC projects, and we needed to move not just work units but also applications belonging them between projects. Using the key based signing method would have required to store the code signing private key on the project's (networked) machine to be able to sign any incoming application, which represents a great security risk. Instead we chose to implement a new authentication method for BOINC in order to be able to move applications controlled between projects.