You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@milagro.apache.org by Kealan McCusker <ke...@gmail.com> on 2022/10/28 15:33:11 UTC
archive
Hi All
I propose to merge develop into master and from now on use master as the
default branch
for these repo's;
https://github.com/apache/incubator-milagro-crypto-c
https://github.com/apache/incubator-milagro-MPC
https://github.com/apache/incubator-milagro-crypto-js
I also propose to public archive these repo's
https://github.com/apache/incubator-milagro-mfa-server
https://github.com/apache/incubator-milagro-crypto-rust
Is that okay with everyone?
regards
Kealan
Re: archive
Posted by Kealan McCusker <ke...@gmail.com>.
Hi All
As I got four votes I will go ahead and do this,
regards
Kealan
On Mon, 31 Oct 2022 at 10:08, Stanislav Mihaylov <sm...@gmail.com>
wrote:
> +1 I think both proposals make sense
>
> On Fri, Oct 28, 2022 at 6:33 PM Kealan McCusker <ke...@gmail.com>
> wrote:
>
> > Hi All
> >
> > I propose to merge develop into master and from now on use master as the
> > default branch
> > for these repo's;
> >
> > https://github.com/apache/incubator-milagro-crypto-c
> > https://github.com/apache/incubator-milagro-MPC
> > https://github.com/apache/incubator-milagro-crypto-js
> >
> > I also propose to public archive these repo's
> >
> > https://github.com/apache/incubator-milagro-mfa-server
> > https://github.com/apache/incubator-milagro-crypto-rust
> >
> > Is that okay with everyone?
> >
> > regards
> >
> > Kealan
> >
>
Re: archive
Posted by Stanislav Mihaylov <sm...@gmail.com>.
+1 I think both proposals make sense
On Fri, Oct 28, 2022 at 6:33 PM Kealan McCusker <ke...@gmail.com>
wrote:
> Hi All
>
> I propose to merge develop into master and from now on use master as the
> default branch
> for these repo's;
>
> https://github.com/apache/incubator-milagro-crypto-c
> https://github.com/apache/incubator-milagro-MPC
> https://github.com/apache/incubator-milagro-crypto-js
>
> I also propose to public archive these repo's
>
> https://github.com/apache/incubator-milagro-mfa-server
> https://github.com/apache/incubator-milagro-crypto-rust
>
> Is that okay with everyone?
>
> regards
>
> Kealan
>
Re: archive
Posted by Giorgio Zoppi <gi...@gmail.com>.
Hello Kealan,
with MPC as far as I remember is possible to create a distributed
application like Hashcorp Vault, that is able to keep secrets.
Technically we could create a cloud service for securely storing and
accessing secrets for the Apache ecosystem. A secret is anything that you
want to tightly control access to as API keys, passwords, certificates or
cryptographic keys. I admit my basic ignorance about MPC but i looked this
https://www.infoq.com/news/2020/05/secure-multiparty-computation-qa/
I know that you've used that for implementing your wallet. I can commit a
couple of hours a week if there is someone who is able to design with me
and since we're living in the same country, open to a discussion.
Best Regards,
Giorgio.
Re: archive
Posted by Kealan McCusker <ke...@gmail.com>.
Hi Giorgio
What do mean by a vault?
Regards
Kealan
On Fri, 28 Oct 2022, 20:16 Giorgio Zoppi, <gi...@gmail.com> wrote:
> Hello Kealan,
> maybe we can discuss this in person. Which effort is needed to create a
> vault with your mpc library ?
>
> Il giorno ven 28 ott 2022 alle ore 18:53 Kealan McCusker <
> kealanmccusker@gmail.com> ha scritto:
>
> > Hi Giorgio
> >
> > I think that the main c library should be our main focus and also the
> MPC C
> > library. The rust code has not been touched in quite some time.
> > The js code is still useful but with the advent of WASM I think that the
> c
> > code would be a better fit in the browser.
> >
> > We can still keep the rust code alive but I would prefer to focus on a
> few
> > repo's.
> >
> > regards
> >
> > Kealan
> >
> > On Fri, 28 Oct 2022 at 16:45, Giorgio Zoppi <gi...@gmail.com>
> > wrote:
> >
> > > Hi,
> > > it's ok.
> > > + 1
> > > Is MFA server still active, looks legacy code to me?
> > > It's very interesting the rust library due to the high demand of
> crypto.
> > > Also is there anyone working in the crypto-js?
> > > I propose to focus on what is in the plan and archive or attic the
> > others.
> > > Less is exponentially more, so the my question are:
> > >
> > > On what shall dedicate effort in near future? (i guess library (c -
> > rust) +
> > > mpc).
> > > How is working on that? How can I help?
> > >
> > > The other things should be marked as obsolete or volunteer working.
> > >
> > >
> > > Also is there any intent to validate towards FIPS_140_2 and FIPS_140_3
> to
> > > make the library more business oriented?
> > > How much effort in terms of money/people requires? When the last
> security
> > > assessment has been performed?
> > >
> > > To mentors @jean-frederic clere <jf...@gmail.com> and @Justin
> Mclean
> > > <ju...@classsoftware.com> any hint that can you give us to help us
> to
> > > grow as community?
> > >
> > > None here wants to end to attic, this time.
> > >
> > > Best Regards,
> > > Giorgio
> > >
> >
>
>
> --
> Life is a chess game - Anonymous.
>
Re: archive
Posted by Giorgio Zoppi <gi...@gmail.com>.
Hello Kealan,
maybe we can discuss this in person. Which effort is needed to create a
vault with your mpc library ?
Il giorno ven 28 ott 2022 alle ore 18:53 Kealan McCusker <
kealanmccusker@gmail.com> ha scritto:
> Hi Giorgio
>
> I think that the main c library should be our main focus and also the MPC C
> library. The rust code has not been touched in quite some time.
> The js code is still useful but with the advent of WASM I think that the c
> code would be a better fit in the browser.
>
> We can still keep the rust code alive but I would prefer to focus on a few
> repo's.
>
> regards
>
> Kealan
>
> On Fri, 28 Oct 2022 at 16:45, Giorgio Zoppi <gi...@gmail.com>
> wrote:
>
> > Hi,
> > it's ok.
> > + 1
> > Is MFA server still active, looks legacy code to me?
> > It's very interesting the rust library due to the high demand of crypto.
> > Also is there anyone working in the crypto-js?
> > I propose to focus on what is in the plan and archive or attic the
> others.
> > Less is exponentially more, so the my question are:
> >
> > On what shall dedicate effort in near future? (i guess library (c -
> rust) +
> > mpc).
> > How is working on that? How can I help?
> >
> > The other things should be marked as obsolete or volunteer working.
> >
> >
> > Also is there any intent to validate towards FIPS_140_2 and FIPS_140_3 to
> > make the library more business oriented?
> > How much effort in terms of money/people requires? When the last security
> > assessment has been performed?
> >
> > To mentors @jean-frederic clere <jf...@gmail.com> and @Justin Mclean
> > <ju...@classsoftware.com> any hint that can you give us to help us to
> > grow as community?
> >
> > None here wants to end to attic, this time.
> >
> > Best Regards,
> > Giorgio
> >
>
--
Life is a chess game - Anonymous.
Re: archive
Posted by Kealan McCusker <ke...@gmail.com>.
Hi Giorgio
I think that the main c library should be our main focus and also the MPC C
library. The rust code has not been touched in quite some time.
The js code is still useful but with the advent of WASM I think that the c
code would be a better fit in the browser.
We can still keep the rust code alive but I would prefer to focus on a few
repo's.
regards
Kealan
On Fri, 28 Oct 2022 at 16:45, Giorgio Zoppi <gi...@gmail.com> wrote:
> Hi,
> it's ok.
> + 1
> Is MFA server still active, looks legacy code to me?
> It's very interesting the rust library due to the high demand of crypto.
> Also is there anyone working in the crypto-js?
> I propose to focus on what is in the plan and archive or attic the others.
> Less is exponentially more, so the my question are:
>
> On what shall dedicate effort in near future? (i guess library (c - rust) +
> mpc).
> How is working on that? How can I help?
>
> The other things should be marked as obsolete or volunteer working.
>
>
> Also is there any intent to validate towards FIPS_140_2 and FIPS_140_3 to
> make the library more business oriented?
> How much effort in terms of money/people requires? When the last security
> assessment has been performed?
>
> To mentors @jean-frederic clere <jf...@gmail.com> and @Justin Mclean
> <ju...@classsoftware.com> any hint that can you give us to help us to
> grow as community?
>
> None here wants to end to attic, this time.
>
> Best Regards,
> Giorgio
>
Re: archive
Posted by Giorgio Zoppi <gi...@gmail.com>.
Hi,
it's ok.
+ 1
Is MFA server still active, looks legacy code to me?
It's very interesting the rust library due to the high demand of crypto.
Also is there anyone working in the crypto-js?
I propose to focus on what is in the plan and archive or attic the others.
Less is exponentially more, so the my question are:
On what shall dedicate effort in near future? (i guess library (c - rust) +
mpc).
How is working on that? How can I help?
The other things should be marked as obsolete or volunteer working.
Also is there any intent to validate towards FIPS_140_2 and FIPS_140_3 to
make the library more business oriented?
How much effort in terms of money/people requires? When the last security
assessment has been performed?
To mentors @jean-frederic clere <jf...@gmail.com> and @Justin Mclean
<ju...@classsoftware.com> any hint that can you give us to help us to
grow as community?
None here wants to end to attic, this time.
Best Regards,
Giorgio
Re: archive
Posted by John McCane-Whitney <jo...@qredo.com.INVALID>.
+1 from me
On 31/10/2022, 09:11, "Kealan McCusker" <ke...@gmail.com> wrote:
EXTERNAL EMAIL: Beware of phishing emails.
Hi All
I propose to merge develop into master and from now on use master as the
default branch
for these repo's;
https://github.com/apache/incubator-milagro-crypto-c
https://github.com/apache/incubator-milagro-MPC
https://github.com/apache/incubator-milagro-crypto-js
I also propose to public archive these repo's
https://github.com/apache/incubator-milagro-mfa-server
https://github.com/apache/incubator-milagro-crypto-rust
Is that okay with everyone?
regards
Kealan