Bitmessage components security seclusion example

Feb 16 01:05 [raw]

Real implementation would be a bit more complex, but this gives the general idea. Every part of the codebase that deals with privileged data is sandboxed by itself and can't communicate with the other parts of the codebase. Instead, each component runs a local server where direct sockets share information to cop functions, that filter it and either drop or forward to the other component's server. For instance, bitmessage has its API. In this regime, the cryptography would be a separate API - the inventory would be a separate API - the message storage would be a separate API. None of these APIs can connect to each other, because on startup random keys are generated for each API, and they can only connect to a parent function, the cop function, that filters every request, checks permissions, enforces security rules, and prevents malformed or maliciously transformed data from moving between APIs. Each API is cryptographically (socket keys) and systemically (OS, virtualenv, firefail) sandboxed to its domain, and can't break out. Ergo, your data can't break out. On top of this, the "secure station" idea proposed could separate some of these privileges to the other side of a serial port with hardware cops and code cops on both sides of the serial port. Until we have serial ports separating the components, functional walls and filters can be built between them. One could even use iptables and SELinux to further secure connections between APIs and their code cops. <br /> <br /> <img src="data:...">

[chan] Crypto-Anarchist Federation

Subject Last Count
Free Git Replacement Jun 24 07:53 19
AES sucks Jun 24 02:01 8
How to Legally Accept a Drug Package as Per Police and Prosecutors Jun 23 18:08 1
Reminder Jun 23 11:54 3
Mr. Burgess Jun 18 18:50 1
So-called "hacktivists" play an unwitting role in helping the NSA Jun 17 17:15 2
Самое педерастическое и лживое место в БМ это каналы серии "ru.politics", "ru.alt.politics", и "ru.alt-... .politics" под любым номером Jun 14 15:49 1
Самое педерастическое и лживое место в БМ это каналы серии ru.politics, ru.alt.politics, а также с любым номером в ru.alt-... .poli Jun 14 11:37 1
Самое педерастическое и лживое место в БМ это каналы ru.politics, ru.alt.politics, ru.alt-1.politics, ru.alt-2.politics, ru.alt-3.politics Jun 13 20:25 1
Самое педерастическое и лживое место в БМ это каналы: ru.politics, ru.alt.politics, ru.alt-1.politics Jun 13 19:09 1
Самое педерастическое и лживое место в БМ это каналы ru.politics и ru.alt.politics => The most fucking-gay and false place in BM is the channels ru.politic Jun 13 15:58 1
Самое педерастическое и лживое место в БМ это каналы ru.politics и ru.alt.politics Jun 13 11:52 1
FIDO Jun 9 16:02 1
fast encryption/decryption routine using group summing method Jun 9 10:59 1
NIST key management guidelines suggest that 15360-bit RSA keys are equivalent in strength to 256-bit symmetric keys… Jun 5 20:12 3
Paris Crypto-Anarchist Meetup #4 Jun 4 21:09 8
Spies win right to keep monitoring all traffic at world's biggest internet hub Jun 2 11:50 1
Searching for specific interactive virus encyclopedia Jun 1 14:48 1
TRUE LOVE May 31 21:49 4
PyBitmessage Security Scan on Branch v0.6 May 31 13:56 5
What is secure? May 31 11:55 1
REAL security experts endorse "security by obscurity" May 31 11:50 2
MEET ME ON THE DARK WEB May 31 07:11 1
persistence pays May 31 06:13 1
Anyone interested in some Sex in Germany? -DM May 29 05:07 5
A Message From Our Business to the Government May 29 03:36 1
hi May 28 20:16 2