File tree Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Original file line number Diff line number Diff line change @@ -1135,12 +1135,15 @@ repo](https://github.com/theupdateframework/specification/issues).
11351135
11361136 * ** 1.9** . ** Fast-forward attack recovery** A _ fast-forward attack_ happens
11371137 when attackers arbitrarily increase the version numbers in any of the
1138- timestamp, snapshot, targets, or delegated targets metadata. To recover from
1138+ timestamp, snapshot, targets, or delegated targets metadata. The attacker goal
1139+ is to cause clients to refuse to update the metadata later because the attacker's
1140+ listed metadata version number (possibly MAX_INT) is greater than the new valid
1141+ version. To recover from
11391142 fast-forward attacks after the repository has been compromised and recovered,
11401143 certain metadata files need to be deleted as specified in this section.
11411144 Please see [ the Mercury
11421145 paper] ( https://ssl.engineering.nyu.edu/papers/kuppusamy-mercury-usenix-2017.pdf )
1143- for more details.
1146+ for more details on fast-forward attacks .
11441147
11451148 * ** 1.9.1** . ** Targets recovery** If a threshold of targets keys have been
11461149 removed in the new trusted root metadata compared to the previous trusted
You can’t perform that action at this time.
0 commit comments