Re: [docs-and-reports] Helper Party networks with a single coordinator vs multiple coordinators (#23) from Erik Taubeneck via GitHub on 2022-10-21 (public-patcg@w3.org from October 2022)

From: Erik Taubeneck via GitHub <sysbot+gh@w3.org>
Date: Fri, 21 Oct 2022 19:54:05 +0000
To: public-patcg@w3.org
Message-ID: <issue_comment.created-1287376746-1666382044-sysbot+gh@w3.org>

This relates to what is (newly) included in section 1.4

All parties in a helper party network should be known a priori and web platform vendors should be able to evaluate risk of an attacker that is more powerful than our assumption, e.g., the attacker is able to control more than the (protocol specific) subset of helper parties in the network.

My contention is that the report collector isn't known a priori, and thus the vendor isn't able to evaluate the risk sufficiently. Moving this over to a new issue, as this is worth having a more detailed conversation on.

-- 
GitHub Notification of comment by eriktaubeneck
Please view or discuss this issue at https://github.com/patcg/docs-and-reports/issues/23#issuecomment-1287376746 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 21 October 2022 19:54:07 UTC