Apt Transparency

Speaker: Simon Josefsson

Track: Security

Type: Long talk (45 minutes)

Room: Somin

Time: Jul 30 (Tue): 15:30

Duration: 0:45

How to improve security of apt repositories with transparency techniques. I will describe attack threat models we should protect against that the current PGP-based trust apt ecosystem currently do not have any defense against. I propose we need a mechanism inspired by WebPKI’s Certificate Transparency, and that we consider existing technologies such as HTTPS canary files, Sigstore’s public transparency log, Sigsum’s public transparency log, and Filippo Valsorda’s spicy signatures. I will talk about interactions with reproducible builds to increase safety of package upgrades.