Datapacks should be GPG-signed

Ismailtaktak / freemedforms

Automatically exported from code.google.com/p/freemedforms

Other

0 stars 0 forks source link

Datapacks should be GPG-signed #228

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago

In a medical application there must be secured that all downloaded datapacks 
are truly from the source that they claim they are.

This could be easily done by signing them with a private/public async GPG 
signing system.
While downloading a datapack the GPG signature can be verified and if it isn't 
correct, FMF refuses to install the datapack.

Original issue reported on code.google.com by christian.a.reiter@gmail.com on 28 Nov 2012 at 9:50

GoogleCodeExporter commented 9 years ago

Original comment by eric.mae...@gmail.com on 15 Sep 2013 at 5:08

Added labels: Milestone-Release2.0
Removed labels: Milestone-Release1.0

GoogleCodeExporter commented 9 years ago

Original comment by eric.mae...@gmail.com on 2 Aug 2014 at 11:14