+1 from me On Thu 12 Sep 2019, 20:21 John McCane-Whitney, <j...@qredo.com> wrote:
> It's a +1 from me too. > > And apologies - I managed to swap the labels for the .asc & .sha516 files > below > > Great to meet you too Giorgio. > > Regards, > > John > > -----Original Message----- > From: Giorgio Zoppi <giorgio.zo...@gmail.com> > Sent: 12 September 2019 19:38 > To: dev@milagro.incubator.apache.org > Subject: Re: [VOTE] Release Apache Milagro (incubating) Decentralized > Trust Authority v0.1.0 (alpha release) > > +1 for me. > Great to speak with you today. > > > El jue., 12 sept. 2019 a las 17:45, John McCane-Whitney (<j...@qredo.com>) > escribió: > > > Hi, > > > > This is a call to vote on the first (alpha) ASF release of the Apache > > Milagro (incubating) Decentralized Trust Authority v0.1.0 tag from the > > following repository: > > > > Milagro Decentralized Trust Authority (D-TA): > > https://github.com/apache/incubator-milagro-dta/releases/tag/0.1.0 > > Please see the release notes at the above link for a full description > > and release rationale. > > > > DESCRIPTION SUMMARY: > > The Apache Milagro (Incubating) Decentralized Trust Authority (D-TA) > > is a collaborative key management server. It has two primary functions. > > > > -Issue shares of identity-based Type-3 pairing secrets for > > initializing zero-knowledge proof multi-factor authentication > > (ZKP-MFA) networks of clients and authentication servers. > > -Safeguards shares of generic secrets, acting independently but in > > conjunction with other D-TA nodes, for the benefit of other D-TA nodes. > > > > In the use case where it issues shares, the D-TA holds nothing except > > for its Master Secret and acts as a distributed private key generation > server. > > In the use case where it is safeguarding shares of secrets, it is up > > to the application developer to implement back-end application logic > > to hold those shares securely. Examples include using Hardware > > Security Modules (HSMs) via an on-board PKCS#11 implementation to > > create a realm of key encryption keys, or multi-party computation > through BLS signature aggregation. > > > > RELEASE RATIONALE SUMMARY: > > By default, the D-TA allows requests from a Principal's D-TA for an > > secp256k1 public key from a Fiduciary D-TA and then to subsequently > > allow the Principal to request its corresponding private key. Whilst > > this may have utility on its own, the Milagro community's intention is > > to extend the capability of the server over time to meet many key > > generation, key storage and distribution use cases. This will be > > achieved using the D-TA's plugin architecture, and to this end, the > > initial release includes two plugins to demonstrate the D-TA's > extensibility. > > > > Subsequent releases will enable the D-TA to issue Type-3 > > pairing/identity based secrets for "M-Pin" clients and servers > > ("M-Pin" is a zero-knowledge authentication protocol in the > > milagro-crypto-c library that also facilitates multi-factor > > authentication). In parallel with this will be a rewritten release of > > the Milagro MFA Authentication server (the original authentication > > server was conflated with the D-TA function limiting its security > efficacy). > > The Milagro community is publishing this release now to elicit > > feedback from a wider community that may have interest in an open > > source, decentralized key generation, storage and distribution > > solution. Our intention is to then to release a series of enhanced > > versions culminating with a production-ready GA version. > > > > Please see the README for build/test instructions and > > https://milagro.apache.org/docs/d-ta-overview for a full overview and > > usage guide. > > > > RELEASE FILES: > > The repo has the required DISCLAIMER, NOTICE and LICENSE file in its > > root directory. All source files have the appropriate license header. > > No binaries are included in this release. > > > > I have successfully built and ran the tests as per the instructions in > > the readme file on Ubuntu 18, Ubuntu 19, Debian 10 and MacOS 10.14 > Mojave. > > > > Release links: > > Source code archive: > > https://dist.apache.org/repos/dist/dev/incubator/milagro/apache-milagr > > o-dta-0.1.0-incubating/apache-milagro-dta-0.1.0-incubating-src.tar.gz > > > > SHA512 checksum: > > https://dist.apache.org/repos/dist/dev/incubator/milagro/apache-milagr > > o-dta-0.1.0-incubating/apache-milagro-dta-0.1.0-incubating-src.tar.gz. > > asc > > > > PGP Signature: > > https://dist.apache.org/repos/dist/dev/incubator/milagro/apache-milagr > > o-dta-0.1.0-incubating/apache-milagro-dta-0.1.0-incubating-src.tar.gz. > > sha512 > > > > Keys: https://dist.apache.org/repos/dist/dev/incubator/milagro/KEYS > > > > VOTING: > > This round of voting will remain open for at least 72 hours. All > > committers are welcome to vote. 3 x [+1] votes are required to move > > forward. If the vote is passed, a second vote is requested from the > IPMC. > > > > Please vote: > > [+1] Signatures and checksums verified. Releases built and tests > > completed. Release approved. > > [0] No opinion > > [-1] Release rejected - please include your reasoning. > > > > Many thanks to all the contributors, > > > > Regards, > > > > John > > > > John McCane-Whitney > > Director of Product at Qredo Ltd > > T: +44 7966 490687 > > 1 Primrose Street > > London, UK EC2A 2EX > > https://qredo.com > > Qredo Ltd is a limited company registered in England and Wales > > (registered number 7834052). This e-mail and any attachments are > > confidential, and are intended only for the named addressee(s). If you > > are not the intended recipient you may not copy, disclose to anyone > > else or otherwise use the content of this e-mail or any attachment > > thereto and should notify the sender immediately and delete them from > your system. > > > > > > -- > Life is a chess game - Anonymous. >
