Re: [Tails-dev] Security implications: moving code from Ver…

Delete this message

Reply to this message
Author: segfault
Date:  
To: tails-dev
Subject: Re: [Tails-dev] Security implications: moving code from Verification Extension to our website
sajolida:
> u:
>> We know from Javascript statistics of our download page that roughly
>> ~20% of the downloads of Tails images are verified by users using the
>> verification extension. The optional OpenPGP verification accounts for
>> 9% of downloads (computed using the number of downloads of the OpenPGP
>> signature). This means that >70% of Tails downloads might currently not
>> be verified at all.


What about the downloads via bittorrent? There the OpenPGP signature is
bundled with the image, so we can't really tell how many of the
bittorrent downloads are additionally verified via the signature.