Electric-Coin-Company / zcash-android-wallet-sdk

Native Android SDK for Zcash
MIT License
5 stars 9 forks source link

Add more security invariants to the threat model #53

Open defuse opened 5 years ago

defuse commented 5 years ago

This ticket should be split into smaller ones, one for each invariant we want to add. In my draft threat model, I had:

We hope that one day, in the HONEST scenario, TYPICAL adversaries cannot:

gmale commented 5 years ago

in the UNTRUSTED threat model, we're not checking proof of work or other concerns that require the full block header (because the compact block only provides limited header information).

gmale commented 5 years ago

In the HONEST scenario, TYPICAL adversaries cannot learn transaction details (time, amount, recipient, etc.)