[Git][reproducible-builds/reproducible-presentations][master] DebConf18: propose transparency introduction

[Benjamin Hof]

Benjamin Hof pushed to branch master at Reproducible Builds / reproducible-presentations


Commits:
b9b669b2 by Benjamin Hof at 2018-08-02T04:02:38Z
DebConf18: propose transparency introduction

Add three slides introducing Software Transparency in the context of
reproducible builds

- - - - -


1 changed file:

- 2018-08-02-DebConf18/index.html


Changes:

=====================================
2018-08-02-DebConf18/index.html
=====================================
--- a/2018-08-02-DebConf18/index.html
+++ b/2018-08-02-DebConf18/index.html
@@ -430,7 +430,67 @@ int main() {
       </section>
 
       <section>
-        <h3>FIXME: Benjamin Hof's stuff here?</h3>
+        <h3>How can we automate the assurance of reproducibility?</h3>
+
+        <p>
+            Idea:
+        </p>
+        <ul>
+            <li>
+                Make sure every installation sees same meta data and packages
+            </li>
+            <li>
+                Even when central infrastructure (archive signing keys) is
+                compromised
+            </li>
+        </ul>
+
+        <p>
+            ⇒ verifications are directly transferrable to all installations
+        </p>
+      </section>
+
+      <section>
+          <h3>
+              Approach: some additional infrastructure
+          </h3>
+
+          <ul>
+              <li>
+                  Central Certificate Transparency-like log server
+              </li>
+              <li>
+                  Distributed “monitor” for verification of reproducible builds
+              </li>
+          </ul>
+          <p>
+              ⇒ any monitor detects reproduciblity problem, everybody benefits
+          </p>
+
+          <!--
+              solve the problem: how can we verify the archive builds
+              reproducibly and make this information useful for every user
+          -->
+      </section>
+
+      <section>
+          <h3>More information on this idea
+          </h3>
+
+          <ul>
+              <li>
+                  DebConf '18 slides:
+                  <a href="https://home.in.tum.de/~hof/debconf18.pdf">
+                      https://home.in.tum.de/~hof/debconf18.pdf
+                  </a>
+              </li>
+              <li>
+                  Prototype code: git://git.net.in.tum.de/hof/strans
+              </li>
+              <li>
+                  Ideas/Feedback: <a href="mailto:hof at cs.tum.edu"> hof at cs.tum.edu </a>
+              </li>
+          </ul>
       </section>
 
       <section>



View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-presentations/commit/b9b669b2a2b90eff2d70b8cd1cccf96df256f1e0

-- 
View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-presentations/commit/b9b669b2a2b90eff2d70b8cd1cccf96df256f1e0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.reproducible-builds.org/pipermail/rb-commits/attachments/20180802/2c7e6275/attachment.html>