Apt Transparency
Speaker: Simon Josefsson
Track: Security
Type: Long talk (45 minutes)
Room: Somin
Time: Jul 30 (Tue): 15:30
Duration: 0:45
How to improve security of apt repositories with transparency techniques. I will describe attack threat models we should protect against that the current PGP-based trust apt ecosystem currently do not have any defense against. I propose we need a mechanism inspired by WebPKI’s Certificate Transparency, and that we consider existing technologies such as HTTPS canary files, Sigstore’s public transparency log, Sigsum’s public transparency log, and Filippo Valsorda’s spicy signatures. I will talk about interactions with reproducible builds to increase safety of package upgrades.