48 lines
1.4 KiB
Markdown
48 lines
1.4 KiB
Markdown
# Verifiably, Attributably Secure Archives
|
|
For when you need to distribute information anonymously, but wish to keep it provably full and intact, but _also_ wish to have options to prove attribution.
|
|
|
|
## Writeup
|
|
### Purpose
|
|
todo
|
|
### Method
|
|
todo
|
|
### Issues
|
|
- two-way deanonymization is assumed when either method to attribute is used
|
|
- when sha512 method is used, originator is assumed to be the owner of the ed25519 key and vice versa
|
|
- any reveal of either signed note or sha512 attribution passphrase, the other is assumed to belong to the same entity
|
|
- opsec failures can result in two-way deanonymization
|
|
|
|
## Usage
|
|
### Installation
|
|
todo
|
|
### Usage
|
|
todo
|
|
|
|
## todo
|
|
1. x validate attribution thing
|
|
2. ? clean up output
|
|
3. x sanity checks
|
|
4. this README.md
|
|
5. x the README-instructions.txt and placedment for archive
|
|
6. x passphrase strength/length checks
|
|
7. sha256 mode with independant passphrase(?)
|
|
8. encrypt archive option
|
|
1. inner
|
|
2. outer
|
|
9. random data optional
|
|
1. x now only takes up 2Kb!
|
|
10. writeup in this README
|
|
11. usage in this README
|
|
12. specification definition
|
|
1. Specification.md
|
|
13. FileMap.md
|
|
|
|
## Changelog
|
|
- reduced random data to 2x 10Kb
|
|
- reduced random data to 2x 1Kb
|
|
- added password strength check with cracklib-check
|
|
- cleaned up output
|
|
- added housekeeping
|
|
- set perms and ownership on archives and keystore to minimum
|
|
- shred all erronious files and dirs
|
|
- cleaned up code |