ozten
commented
12 years ago I timeboxed this to 1 day and didn't finish. I don't think this is critical for launch and will take another stab at it post-beta.
Closed ozten closed 11 years ago
ozten
commented
12 years ago I timeboxed this to 1 day and didn't finish. I don't think this is critical for launch and will take another stab at it post-beta.
via email from @benadida
Split Vinz Clortho code into two components: one that does almost everything except keysigning, and the other that does keysigning. As in the typical BrowserID code, the keysigning functionality should be proxied from the first component to the other. This is so we have a layer of defense in case attackers penetrate the top-level machine, they don't have access to the keysigning functionality.
I recommend we do this in much the same way we BrowserID splitting. In fact, Lloyd's figured out so much of the details of proxying properly that we really should reuse his code as is, maybe even turn it into a reusable.