Open langweg opened 6 years ago
We looked at the individual points with the following results:
Maybe that would be a good side topic.
Yes, the picture should be available only to the cage labeller. The attack program could try to read the picture from the config file (and fail) and could try to show the wrong picture. The point here is that the attack program could be used in an experiment where unsuspecting users could be observed whether or not they detect that the wrong picture is shown (or if they do not care):
The implementation should be tested for security vulnerabilities by providing attack samples, e.g.
Once this issue is addressed, it makes sense to create sub-issues dealing with individual attacks.