search

mozilla-mobile / mozilla-vpn-client

A fast, secure and easy to use VPN. Built by the makers of Firefox.
https://vpn.mozilla.org
Other
454 stars 110 forks source link

Reproducible builds #4863

Closed data-sync-user closed 1 year ago

data-sync-user commented 1 year ago

https://reproducible-builds.org/

Why does it matter?

Whilst anyone may inspect the source code of free and open source software for malicious flaws, most software is distributed pre-compiled with no method to confirm whether they correspond.

This incentivises attacks on developers who release software, not only via traditional exploitation, but also in the forms of political influence, blackmail or even threats of violence.

This is particularly a concern for developers collaborating on privacy or security software: attacking these typically result in compromising particularly politically-sensitive targets such as dissidents, journalists and whistleblowers, as well as anyone wishing to communicate securely under a repressive regime.

Whilst individual developers are a natural target, it additionally encourages attacks on build infrastructure as a successful attack would provide access to a large number of downstream computer systems. By modifying the generated binaries here instead of modifying the upstream source code, illicit changes are essentially invisible to its original authors and users alike.

The motivation behind the Reproducible Builds project is therefore to allow verification that no vulnerabilities or backdoors have been introduced during this compilation process. By promising identical results are always generated from a given source, this allows multiple third parties to come to a consensus on a “correct” result, highlighting any deviations as suspect and worthy of scrutiny.

This ability to notice if a developer or build system has been compromised then prevents such threats or attacks occurring in the first place, as any compromise can be quickly detected. As a result, front-liners cannot be threatened/coerced into exploiting or exposing their colleagues.

Several free software projects already, or will soon, provide reproducible builds.

┆Issue is synchronized with this Jira Task ┆Reporter: Betty Fleming

data-sync-user commented 1 year ago

➤ Betty Fleming commented:

Low priority but interesting to have for a security-oriented product, reproducible builds are a way to prove that, what you are running is actually the code you can have access to. Read more here:

https://reproducible-builds.org/ ( https://reproducible-builds.org/ )

and

https://github.com/bitshares/bitshares-gitian ( https://github.com/bitshares/bitshares-gitian|smart-link )