Thanks Colin, that's a very nice summary.
As I suggested above, using https for the archives would seem to be the correct tool to protect against DNS poisoning or network interception, and almost all the parts needed to do it are already there.
Thanks Colin, that's a very nice summary.
As I suggested above, using https for the archives would seem to be the correct tool to protect against DNS poisoning or network interception, and almost all the parts needed to do it are already there.