|
|
|
|
|
|
by defend
805 days ago
|
|
|
Disclaimer: I'm a minibone co-author. A pointed question. Under threat models where you trust (or have verified) the code being executed, this allows you to use untrusted storage (e.g. cloud databases, S3, etc.) without worrying about passive attackers being able to read your data. Using TLS and server-side encryption, a passive attacker could install a shim to intercept data. In practice, one usecase of Minibone would be open-source electron-style web applications where you have the necessary code transparency AND signed code versioning.
Another would be self-written applications (assuming you trust yourself).
Another might be closed-source internal tooling (assuming you trust your company) that's hosted on cloud infrastructure. If I've overlooked anything, please do let me know. |
|
|