[Popcon-developers] encrypted popcon submissions
Bill Allombert
Bill.Allombert at math.u-bordeaux1.fr
Fri May 10 20:02:06 UTC 2013
Dear developers,
I am considering activating encryption of popularity-contest submissions
using public key cryptography to protect popcon submission while in transit.
This means
- The popularity-contest package will include a public key that will be used to encrypt
report.
- The popcon.debian.org server will know the matching private key and use it to
decrypt report before storing them.
- The key will be changed for each stable Debian release.
The drawback is the computing cost on the server. Currently we are processing
about 25000 report each days, which would require about 2 hours of 'real'
CPU time to decrypt, which is too much for popov.debian.org. On the other hand
this is easily parallelisable.
So before I proceed we need to decide as a project whether this is a worthwhile
use of resource.
Cheers,
--
Bill. <ballombe at debian.org>
Imagine a large red swirl here.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/popcon-developers/attachments/20130510/c12dec51/attachment.pgp>
More information about the Popcon-developers
mailing list