|
I stumbled over this page: https://theupdateframework.github.io/ For people too lazy to click on links (like me), I copy+paste the
content: A Framework for Securing Software Update SystemsThe Update Framework (TUF) helps developers to secure new or existing software update systems, which are often found to be vulnerable to many known attacks. TUF addresses this widespread problem by providing a comprehensive, flexible security framework that developers can integrate with any software update system. The framework can be easily integrated (or implemented in the native programming languages of these update systems) due to its concise, self-contained architecture and specification. Developers have so far implemented the framework in the Python, Go, Ruby, and Haskell programming languages. What is a software update system?Generally, a software update system is an application (or part of an application) running on a client system that obtains and installs software. This can include updates to software that is already installed or even completely new software. Three major classes of software update systems are:
Our approachThere are literally thousands of different software update systems in common use today. (In fact the average Windows user has about two dozen different software updaters on their machine!) We built a specification and library that can be universally (and in most cases transparently) used to secure software update systems.
-- Thomas Guettler http://www.thomas-guettler.de/ I am looking for feedback: https://github.com/guettli/programming-guidelines |
_______________________________________________ Distutils-SIG maillist - Distutils-SIG@python.org https://mail.python.org/mailman/listinfo/distutils-sig
