-
Notifications
You must be signed in to change notification settings - Fork 1
Issues: freedomofpress/securedrop-protocol
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Attack on indistinguishability: server excludes some journalists when keys are fetched
#56
opened Oct 1, 2024 by
lumaier
Missing Message Agreement
protocol research
Issues for tracking protocol research and choices
security
Potential and confirmed security issues
#55
opened Sep 24, 2024 by
lumaier
Update README section 'Limitations and Discussion'
documentation
Improvements or additions to documentation
#54
opened Sep 12, 2024 by
lsd-cat
Vulnerability found: Key Replacement on Source Submission
security
Potential and confirmed security issues
#53
opened Jul 23, 2024 by
lumaier
README: check consistency of indexes and iterators
documentation
Improvements or additions to documentation
#52
opened Jul 5, 2024 by
lsd-cat
README: suggested improvements for protocol flow diagram
documentation
Improvements or additions to documentation
#51
opened Jul 5, 2024 by
lumaier
5 tasks
Bucketing proposal to drop the message limit
protocol research
Issues for tracking protocol research and choices
#49
opened May 25, 2024 by
lsd-cat
Refactor to be KEM-oriented instead of DH-oriented
protocol research
Issues for tracking protocol research and choices
#48
opened May 21, 2024 by
bifurcation
Discussion of server attack scenarios (and clarification of protocol goals)
#45
opened May 9, 2024 by
rocodes
Address and analyze the preliminary audit
protocol research
Issues for tracking protocol research and choices
security
Potential and confirmed security issues
#36
opened Apr 8, 2024 by
lsd-cat
Formal Analysis of Protocol
formal methods
Issues for tracking the formal modelling of the protocol
#33
opened Jan 15, 2024 by
felixlinker
Define PKI structure and policies
protocol research
Issues for tracking protocol research and choices
security
Potential and confirmed security issues
#32
opened Dec 22, 2023 by
lsd-cat
Server might swap, replace, replay ciphertexts
security
Potential and confirmed security issues
#31
opened Dec 22, 2023 by
lsd-cat
Decide the deniability/authenticity requirements for the message encryption
protocol research
Issues for tracking protocol research and choices
#30
opened Dec 22, 2023 by
lsd-cat
draft TLA+ model of the server as a message queue with clients
formal methods
Issues for tracking the formal modelling of the protocol
#29
opened Dec 1, 2023 by
cfm
Add clear statement of the desired security properties
documentation
Improvements or additions to documentation
#27
opened Nov 7, 2023 by
lsd-cat
consider domain-agnostic terminology for protocol participants
documentation
Improvements or additions to documentation
#21
opened Oct 27, 2023 by
cfm
Sources are able to access and delete attachments/uploads because they know the Issues for tracking protocol research and choices
file_id
protocol research
#10
opened Feb 15, 2023 by
eaon
Prevent URI path traversals when downloading files
bug
Something isn't working
security
Potential and confirmed security issues
#4
opened Jan 24, 2023 by
smaury
Add symmetry also for /file endpoint
protocol research
Issues for tracking protocol research and choices
#3
opened Jan 24, 2023 by
smaury
ProTip!
Mix and match filters to narrow down what you’re looking for.