-
Banking Scaffold - RPC x. Deposit operation x. Withdrawal operation x. Balance operation x. Persitance / Replay x. Threat model - transaction integrity
-
Updated threat model x. Signed hash chain x. A word about key-pairs
-
Adding customer accounts => Accounts by Acc # x. map/reduce x. Customer key-pairs - Bank binds PK to acc => certificate authority x. Customer signed hash chain - Co-signed by both customer and bank = Non-repudiation
-
Latest hash as receipt - Replay attack, distributed sync, local (customer) vs global (bank) hash x. Updated integrity check
-
At-rest encryption - encryption at rest x. [Encrypt key-pair] x. [Encrypt transaction log]
X. Beefing up security - Secure memory, memory locking X. Deriving symmetric key from asymmetric X. [Random data / entropy]