Re: [Taler] sync vs financial security

taler

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Taler] sync vs financial security

From:	Jeff Burdges
Subject:	Re: [Taler] sync vs financial security
Date:	Sat, 24 Feb 2018 13:15:23 +0100

On Sat, 2018-02-24 at 13:01 +0100, Jeff Burdges wrote:
> > So we should first be clear under what threat model "theft by sync"
> > is a problem, but your device can't be completely pwned in worse
> > ways anyway.
> 
> I think the threat model is casual thieves with only limited technical
> knowhow.  
> 
> Aside from balance sync, I see two questions here:
> 
> (1)  Can/when/do we require user authentication to enable sync?

I'm happy assuming the device is updated and the thief lacks access to
any software with exploits to violate application separation imposed by
the device.  Android devices are commonly not given security updates of
course, but of well.  

Jeff

signature.asc
Description: This is a digitally signed message part

[Prev in Thread]

Current Thread

[Next in Thread]

[Taler] sync vs financial security, Jeff Burdges, 2018/02/23
- Re: [Taler] sync vs financial security, Florian Dold, 2018/02/23
  - Re: [Taler] sync vs financial security, Jeff Burdges, 2018/02/24
    - Re: [Taler] sync vs financial security, Jeff Burdges <=

Prev by Date: Re: [Taler] sync vs financial security
Next by Date: [Taler] sync transitivity
Previous by thread: Re: [Taler] sync vs financial security
Next by thread: [Taler] sync transitivity
Index(es):
- Date
- Thread