Hello,
I have been working on a paper on Monotone's security. I have tried to
make it accurate, but I'm sure that there are still errors. But it's
probably good enough to merit posting.
http://daniel.carrera.name/Monotone_Security/
Yes, it's long. If you want a quick summary, here it is: "Monotone is
really good; encrypted archives would make it better".
I followed David A. Wheeler's criteria for secure SCMs. That is the best
impartial standard for SCM security that I know of. If you choose to
read some of this and spot some errors, please do let me know. Also,
feel free to reuse any of all of this. It's public domain.
Regards
Daniel.
_______________________________________________
Monotone-devel mailing list
[email protected]
http://lists.nongnu.org/mailman/listinfo/monotone-devel
