In this model, downgrade prevention would a) be inexistant or b) require work from the upstream tarball provider, to produce tarballs with metadata files that could provide such data.
Authentication could be done by relying on TLS, or requiring a signature file.
