Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[ease-dev] [EASE] Bugs to be posted on Bugzilla
Hi Christian,

I have prepared a bug list to be placed on bugzilla. I thought I must be conforming it before posting.

Here are the bugs and their description:
  • Provide libraries for Signing and Verifying scripts using Digital Signature
    • To check the integrity of online scripts, digital signature is a useful tool. The libraries will provide methods for signing scripts using keys from JAVA keystore and verifying signature using public key.
      Libraries will also include method for extracting original script from signature file.
  • UI to support signing mechanism like context menu, window showing options to select private key from JAVA Keystore
    • Context menu will be provided to initiate signing mechanism. To select private key from JAVA Keystore, a dialog box will be provided. Dialog box to inform signer about his signed file and a warning dialog if he is signing using self-signed certificate, just as a reminder.
  • UI to support signature verifying mechanism like Preference page, warning dialog box, descriptors
    • Using preference page, verifier can control whether he/she wants to make execution of unsinged and self-signed scripts default or not. A dialog box to warn user about invalid signatures and self-signed or expired certificate. Descriptors to show status of  a online script file on Package Explorer pane whether it is certified or not.
  • UI to support additional options on verifier side like showing signature properties
    • Verifier can see signature properties at time of verification or anytime later and it can be done by showing it in Properties View of Context Menu. There will be Context menu to import certificate so that verifier can chose at time of signature or later on to import certificate to his JAVA keystore to keep a record.
  • Changes into source code to merge UI functionality
    • Changes needs to be made in signature libraries to call UI modules. e.g. calling warning dialog box if signature is invalid while verifying.

Also, for which component, the first and last bug regarding libraries should be posted? Is it General component or Core component?

Which version should I keep? 0.2.0 or 0.3.0? I am keeping severity to 'enhancement'.

Thanks,

--
Varun Raval

Back to the top