Research more secure htpdate time pool design
I can't think of another area in which asking a hostile for advice is a
good idea. Maybe "if friend and foe both agree, you can be confident
that they're right; if they disagree, look further" - but that's not
what Tails htpdate is doing.
Indeed, it should probably discard information that is diverging too
much from what others tell us. Care to file a "research" ticket
mailing list thread:
Tails htpdate - why use time information from neutral and foe pools?
Please research if it was more secure if you had pal_pool_1, pal_pool_2, pal_pool_3 rather than neutral and foe pools.
#1 Updated by intrigeri over 4 years ago
- Subject changed from research more secure htpdate time pool design to Research more secure htpdate time pool design
- Status changed from New to Confirmed
- Priority changed from Normal to Low
I doubt anyone on our team will be working on this anytime soon => anyone interested, please do take it.
#3 Updated by adrelanos almost 4 years ago
I don't think any more research is required. Because we at Whonix discussed and throughly thought this through:
There imho is no logical defensible argument in favor of asking foe's for something. I could perhaps rehash that discussion and make an argument in favor of my view if that is required.