Mastodawn

Web applications are only as trustworthy as the servers that serve them, and servers can get hacked. That’s why we are introducing WEBCAT, a tool allowing web browsers to verify the origin of code before they run it.

🌞 Today, WEBCAT enters alpha testing! If you like to experiment with cutting-edge software, give it a try:
https://securedrop.org/news/webcat-alpha/

Help us test WEBCAT alpha

Web applications are only as trustworthy as the servers that serve them, and servers can get hacked. So, last year, we introduced WEBCAT (Web-Based Code Assurance and Transparency), a project designed to enable verifiable in-browser code for web applications. We wrote extensively about WEBCAT’s requirements, constraints, and goals.Today, we’re excited to announce the alpha release of WEBCAT. In particular, we invite community participation in a new, decentralized enrollment infrastructure.

SecureDrop

Show thread

Gabriel H. Nunes Mar 4

@securedrop

Great work!

Has @protonprivacy shown any interest in the project? It would be really nice to see them integrating WEBCAT into their suite.

#WEBCAT #Security #Privacy #Web

Show thread

Phil Höfer 7h ago

@securedrop without reading too much into it, this seems similar to this project: https://github.com/tasn/webext-signed-pages

GitHub - tasn/webext-signed-pages: A browser extension to verify the authenticity (PGP signature) of web pages

A browser extension to verify the authenticity (PGP signature) of web pages - tasn/webext-signed-pages

GitHub