canmove, Confirmed users
1,567
edits
Extension Manager:Addon Update Security: Difference between revisions
Jump to navigation
Jump to search
Extension Manager:Addon Update Security (view source)
Revision as of 14:55, 5 March 2008
, 5 March 2008→Securing Update Manifests Through Digital Signatures
m (User:Mossop:Fx-Docs:AddonUpdateSecurity moved to Extension Manager:Addon Update Security: Moving out of my user area to somewhere more sensible) |
|||
| Line 54: | Line 54: | ||
The private key is then used to sign the contents of the update manifest as an additional property of the update manifest will contain the signature. | The private key is then used to sign the contents of the update manifest as an additional property of the update manifest will contain the signature. | ||
Further details of the signing are available at [[ | Further details of the signing are available at [[Extension Manager:Addon Update Security:Signature]] | ||
During an update check the public key in the already installed add-on will be used to verify the digital signature against the update manifest's content ensuring that it has not been tampered with. | During an update check the public key in the already installed add-on will be used to verify the digital signature against the update manifest's content ensuring that it has not been tampered with. | ||