Revision 1 as of 2015-06-28 22:09:15
add a todo
|Deletions are marked like this.||Additions are marked like this.|
|Line 41:||Line 41:|
|==== TODO Switch FreedomBox site from mod_ssl to mod_gnutls ====
This page describes the components the system will require.
- User Agent
- Key/Identity Exchange
- Web Server
- Authentication (Identification)
- TODO Every Service Must Authorize via [[#Authorization|Authorization]]
TODO Create Client Application to Connect to Box Services via Client Cert
Used to introduce users to one another.
TODO Create Client Application to Manage Key Exchange via Mutual QR-Code
This should be a FBuddy instance that can exercise sensors usually found on mobile-devices for data exchange.
TODO Refuse Non-Tor Wireless HTTP Connections
Tor-based connections pass through to destination. Non-Tor connections are stopped by a landing page that teaches the user where to download the TBB (perhaps hosted locally?).
TODO Switch FreedomBox site from mod_ssl to mod_gnutls
TODO Identify (Authenticate) Users from Client Certs
TODO Get User Id from Client Cert Id
TODO Authorize Users from Client Cert Identity
TODO Middleware to Reject Requests that fail Authorization?
TODO Manage User's Service Authorization
Enable services for some specific users and not others.
TODO Teach Boxes to Exchange Service Location Data Regularly
TODO Create PGP Keys for End-Users
TODO Export PGP Keys to SSL Client Certs for End Users