[Pkg-mozext-commits] [perspectives-extension] 12/22: Pers_client_policy - Clean up comments
David Prévot
taffit at moszumanska.debian.org
Mon May 12 17:17:43 UTC 2014
This is an automated email from the git hooks/post-receive script.
taffit pushed a commit to branch debian
in repository perspectives-extension.
commit e27c6f41c531259bff87b6a4bc1f8a9436095b93
Author: Dave Schaefer <dave.schaefer at gmail.com>
Date: Mon May 5 22:12:02 2014 -0600
Pers_client_policy - Clean up comments
Set the function descriptions/docs in the same order as the functions.
---
plugin/chrome/content/client_policy.js | 12 +++++++-----
1 file changed, 7 insertions(+), 5 deletions(-)
diff --git a/plugin/chrome/content/client_policy.js b/plugin/chrome/content/client_policy.js
index c5bccfa..901326b 100644
--- a/plugin/chrome/content/client_policy.js
+++ b/plugin/chrome/content/client_policy.js
@@ -203,15 +203,17 @@ get_quorum_duration : function(test_key, results, quorum_size, stale_limit_secs,
// For sites that do not consistently use a single certificate, Perspectives supports
// a weaker notion of whether a key is 'valid', called 'weak consistency'.
// This test checks that two things are BOTH true:
-// 1) confirm that no notary has consistently seen any key for this website. We do this
+//
+// 1) that 'test' key has been seen by at least 'quorum_size' notaries in the past
+// 'check_length' days. Note that this is weaker than Perspectives' standard
+// requirement that notaries must have seen a key consistently over time. Even a single
+// observation by all notaries could undermine this form of consistency.
+//
+// 2) confirm that no notary has consistently seen any key for this website. We do this
// by checking that in the past 'check_length' days, no notary has seen the
// same key for more than 'max_timespan' days. The goal of this check is to make sure
// weak consistency cannot be used by an attacker to undermine a site that regularly
// uses a single 'correct' key.
-// 2) that 'test' key has been seen by at least 'quorum_size' notaries in the past
-// 'check_length' days. Note that this is weaker than Perspectives' standard
-// requirement that notaries must have seen a key consistently over time. Even a single
-// observation by all notaries could undermine this form of consistency.
// This technique is implemented by the functions 'key_weakly_seen_by_quorum' and 'inconsistency_check'
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-mozext/perspectives-extension.git
More information about the Pkg-mozext-commits
mailing list