18. Security

Being a distributed system, Perspectives does not suffer from the well-known typical vulnerabilities of client-server model applications. This is not to say that no threats exist. Moreover, during development, some design decisions relevant to the security of the system have been taken mostly with the eye on ease of development, such as unencrypted delta texts. In order not to forget these when going into production, we list them here.

  • Threat Model – A threat model for MyContexts and the Perspectives Distributed Runtime

  • Security To-Do list – A list of things to do before going into production in order to make the system more secure.

← Previous: Value Representation | ↑ Up: PART III. IMPLEMENTATION DETAILS | ⌂ Home: Perspectives Technical Documentation | Next: Threat Model →

1. If no authoring role is provided by the API caller, we take it to be the System User.