[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Monotone-devel] Monotone Security
From: |
Markus Wanner |
Subject: |
Re: [Monotone-devel] Monotone Security |
Date: |
Fri, 17 Oct 2008 20:30:17 +0200 |
User-agent: |
Mozilla-Thunderbird 2.0.0.16 (X11/20080724) |
Hi,
Zack Weinberg wrote:
> Yes. Distributed systems research has concluded that there ain't no
> such thing as a trustable global clock. (I don't have cites - this is
> my paraphrase of something Nathaniel said some years ago.)
While that's certainly true, I also agree with Daniel that there's
something wrong with revisions A -> B having timestamps in reverse ordering.
IMO monotone should at least warn about such obviously ill-certified
revisions, better yet protect against such wrong information. That's one
reason for my work on nvm.dates: being able to compare the dates, so we
can do these checks.
So with refusing to commit revisions with a date *before* its ancestor,
monotone would help detecting clock skews. And by warning and (possibly
automatically) distrusting certs from the future, monotone could prevent
situations where you cannot commit because someone else has signed a
revision with an erroneous date. Keep in mind that you can always decide
to *not* trust a cert with an invalid date.
Note that this does not have anything to do with a "global time" or
using timestamps for internal purposes. It's rather just about extending
validity checking of the given information.
Regards
Markus Wanner
- Re: [Monotone-devel] Monotone Security, (continued)
- Re: [Monotone-devel] Monotone Security, Zack Weinberg, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carrera, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Ethan Blanton, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carrera, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Zack Weinberg, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carrera, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carosone, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Jack Lloyd, 2008/10/16
- Re: [Monotone-devel] Monotone Security,
Markus Wanner <=
- [Monotone-devel] hypothetical - future-dated certs (Re: Monotone Security), Daniel Carosone, 2008/10/19
- [Monotone-devel] Re: hypothetical - future-dated certs (Re: Monotone Security), Markus Wanner, 2008/10/20
- Re: [Monotone-devel] Re: hypothetical - future-dated certs (Re: Monotone Security), Daniel Carosone, 2008/10/20
- Re: [Monotone-devel] Re: hypothetical - future-dated certs (Re: Monotone Security), Markus Wanner, 2008/10/20
- Re: [Monotone-devel] Re: hypothetical - future-dated certs (Re: Monotone Security), Daniel Carosone, 2008/10/20
- Re: [Monotone-devel] Monotone Security, hendrik, 2008/10/16
- Re: [Monotone-devel] Monotone Security, John Bailey, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carrera, 2008/10/16
- Re: [Monotone-devel] Monotone Security, hendrik, 2008/10/16
- Re: [Monotone-devel] Monotone Security, Daniel Carrera, 2008/10/16