[cryptography] Interesting Webcrypto question

Taral taralx at gmail.com
Mon Mar 4 16:38:12 EST 2013


On Mon, Mar 4, 2013 at 12:31 PM, Jeffrey Walton <noloader at gmail.com> wrote:
> Actually, its not too far fetched. In the mobile arena, I see a number
> of in-house browser based apps that can be side-loaded or distributed
> through a private or enterprise application store. When using these
> distribution channels, script injection and tampering is not a high
> risk because its part of the application bundle.

Can you mitigate the risk with the Chrome webstore too? Perhaps via
some kind of chain-of-trust or attestation scheme.

--
Taral <taralx at gmail.com>
"Please let me know if there's any further trouble I can give you."
    -- Unknown



More information about the cryptography mailing list