[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Taler] sync vs financial security

From: Jeff Burdges
Subject: Re: [Taler] sync vs financial security
Date: Sat, 24 Feb 2018 13:15:23 +0100

On Sat, 2018-02-24 at 13:01 +0100, Jeff Burdges wrote:
> > So we should first be clear under what threat model "theft by sync"
> > is a problem, but your device can't be completely pwned in worse
> > ways anyway.
> I think the threat model is casual thieves with only limited technical
> knowhow.  
> Aside from balance sync, I see two questions here:
> (1)  Can/when/do we require user authentication to enable sync?

I'm happy assuming the device is updated and the thief lacks access to
any software with exploits to violate application separation imposed by
the device.  Android devices are commonly not given security updates of
course, but of well.  


Attachment: signature.asc
Description: This is a digitally signed message part

reply via email to

[Prev in Thread] Current Thread [Next in Thread]