On Mar 11, 2013, at 10:52 AM, Daniel Holth <[email protected]> wrote:
> Super impressed after reading all the TUF papers and comparing it to > my own feeble proposal, they had addressed a whole bevy of problems > that I hadn't even thought of - infinite-length download attacks, > server-asserted timestamps, quorum signatures, sophisticated trust > delegation, consistency of all the metadata all the time ... > _______________________________________________ > Catalog-SIG mailing list > [email protected] > http://mail.python.org/mailman/listinfo/catalog-sig Agreed, and they've been very helpful with questions when asked. ----------------- Donald Stufft PGP: 0x6E3CBCE93372DCFA // 7C6B 7C5D 5E2B 6356 A926 F04F 6E3C BCE9 3372 DCFA
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Catalog-SIG mailing list [email protected] http://mail.python.org/mailman/listinfo/catalog-sig
