Comments (5)
gurayAlsac
commented on July 17, 2024
Interesting. Would that preclude those with newly installed apps to legitimately confirm positive? We could change the client api to supply fake keys if the full 14 aren't available.
from exposure-notifications-server.
mikehelmick
commented on July 17, 2024
The maximum maximum number, in the pathological case is 14*144
New key generated, each interval, over the last 14 days.
It is totally treasonable for a single key to be submitted and still be valid.
When we add verification pin codes, that will require that a health authority has diagnosed the user.
from exposure-notifications-server.
mikehelmick
commented on July 17, 2024
/cc @flagxor
from exposure-notifications-server.
laurentsimon
commented on July 17, 2024
I think from the proposal, there is one random key generated each day, and for each interval the key is derived from the day-key as PRF(key_day_n, interval). So there are 14 keys to upload, correct?
Keys not available because the app installation is too recent should be replaced by fakes ones. Nobody should able able to tell these are fakes, not even the server.
Does this make sense?
from exposure-notifications-server.
mikehelmick
commented on July 17, 2024
fixed as part of #157
This is an env var, defaulted to 14 - it's possible that a locale may want to configure this to report longer (or shorter) history.
from exposure-notifications-server.
Related Issues (20)
- Add documentation about debugger
- Remove uptime check on endpoints for export and federation
- Document federation module support
- Disable v1alpha1 by default (allow for flag on still)
- write doc for creating export config and sharing signing keys
- Improve CloudSchedulerJobFailed playbook HOT 3
- Add support for user-report
- Issue section removed for exposure-notifications-internals repo HOT 2
- Unreachable db ping check within health handler
- Server time synchronization tolerance HOT 2
- Upgrade to https://github.com/golang-jwt/jwt
- EXPOSURE Service crashes if STATS_UPLOAD_MINIMUM envar is set to less than 10. HOT 5
- Pullback
- don't block startup on metric initialization HOT 1
- Server graceful shutdown sync
- don't register stackdriver metrics on every instance start HOT 4
- Switch Cloud Scheduler to UTC
- Self report not included in export-importer functionality
- terraform using deprecated arg HOT 2
- Possible dead lock in the cache package? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from exposure-notifications-server.