[
https://issues.apache.org/jira/browse/FELIX-3610?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13422577#comment-13422577
]
Guillaume Nodet edited comment on FELIX-3610 at 7/25/12 8:20 PM:
-----------------------------------------------------------------
Not sure, I'm not designing this myself, I can ask.
I guess if bundles were actually verified when restarting, that would really
help at least, though, it looks to me that in terms of performance doing the
check at runtime instead would be more efficient (and more secured obviously).
was (Author: gnt):
Not sure, I'm not designing this myself, I can ask.
I guess if bundles were actually verified when restarting, that would really
help at least, though, it looks to me that in terms of performance doing the
check at runtime instead would be more efficient (and more secured obviously).
As for security, even if the signatures are checked at runtime, it should be
easy to stop the bundle, refresh (unresolve), tamper with the jar and restart
the bundle. There's a good change the signatures check would be bypassed.
> Support runtime verification for signed bundles
> -----------------------------------------------
>
> Key: FELIX-3610
> URL: https://issues.apache.org/jira/browse/FELIX-3610
> Project: Felix
> Issue Type: Improvement
> Components: Framework, Framework Security
> Reporter: Guillaume Nodet
> Assignee: Karl Pauls
>
> Signed bundles are only checked when installed, but the goal of signed
> bundles is to make sure no one has changed the jar. This is not ensured
> unless bundle entries are verified when loaded.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
