id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc	launchpad_bug
366	"address Nathan Wilcox's concerns about ""Tahoe and the browser security model"""	zooko	blaisep	"[//pipermail/tahoe-dev/2008-February/000404.html On the mailing list] Nathan Wilcox posted some general concerns about how Tahoe's WUI relies on a security model which is different than the one almost everyone thinks of when they think of web browsers and URLs.

It is through such cracks between people's models that security failures slip (according to Ross Anderson's book ''Security Engineering'').

If we could address these concerns, at least by documentation, for Tahoe v1.0 I would feel better."	defect	assigned	major	eventually	code-frontend-web	0.9.0		security capleak docs websec	nejucomo