Improve software assurance
|Reported by:||phobos||Owned by:||phobos|
Improving software assurance through repeatable builds across all operating systems and verifiable build system security. Without getting into endless black holes (see http://cm.bell-labs.com/who/ken/trust.html), we should be able to document how our software was built and others should be able to repeat the exact same steps and build the exact same binaries. The binaries should be verifiable through some hash algorithm or forensic analysis of the resulting binaries.
This goes towards improving our build integrity and build security once others can independently verify the binaries.
Change History (3)
comment:1 Changed 5 years ago by karsten
- Keywords SponsorZ added
- Milestone Sponsor Z: November 1, 2013 deleted