7 | | CryptoPlugin supports cryptographically backed functions in Trac. |
| 7 | CryptoPlugin supports cryptographically backed functions in Trac. Privacy offered based on these functions is much different compared to other privacy-related plugins. |
| 8 | |
| 9 | Privacy offered by a Trac system depending on setup and user action. |
| 10 | |
| 11 | We assume, that users always have the freedom to store data without protection, or take action to eigther sign-only or encrypt/encrypt-sign it. |
| 12 | |
| 13 | Trac plugins other than CryptoPlugin attempt to protect only some of Trac's content: SensitiveTicketsPlugin (tickets-only), PrivateWikiPlugin (wiki-only) |
| 14 | |
| 15 | However they do not differenciate in terms of protection strength, so we're rated regardless of protected Trac content type here. |
| 16 | |
| 17 | || ||Trac, no plugins||||other plugins installed||||||||!CryptoPlugin installed|| |
| 18 | ||modules state||enabled||disabled||enabled||disabled||disabled||enabled||enabled|| |
| 19 | ||client setting||n. a.||n. a.||n. a.||Trusted server||Trusted client||Trusted server||Trusted client|| |
| 20 | |||||||||||||||||| |
| 21 | ||regular content||n. a.||n. a.||n. a.||n. a.||n. a.||n. a.||n. a.|| |
| 22 | {{{#!tr |
| 23 | {{{#!td |
| 24 | signed content |
| 25 | }}} |
| 26 | {{{#!td |
| 27 | n. a. |
| 28 | }}} |
| 29 | {{{#!td |
| 30 | n. a. |
| 31 | }}} |
| 32 | {{{#!td |
| 33 | n. a. |
| 34 | }}} |
| 35 | {{{#!td |
| 36 | {{{#!div style="background-color:orange" |
| 37 | weak |
| 38 | }}} |
| 39 | }}} |
| 40 | {{{#!td |
| 41 | {{{#!div style="background-color:orange" |
| 42 | weak |
| 43 | }}} |
| 44 | }}} |
| 45 | {{{#!td |
| 46 | {{{#!div style="background-color:orange" |
| 47 | weak |
| 48 | }}} |
| 49 | }}} |
| 50 | {{{#!td |
| 51 | {{{#!div style="background-color:orange" |
| 52 | weak |
| 53 | }}} |
| 54 | }}} |
| 55 | }}} |
| 56 | {{{#!tr |
| 57 | {{{#!td |
| 58 | secured content |
| 59 | }}} |
| 60 | {{{#!td |
| 61 | n. a. |
| 62 | }}} |
| 63 | {{{#!td |
| 64 | {{{#!div style="background-color:red" |
| 65 | none |
| 66 | }}} |
| 67 | }}} |
| 68 | {{{#!td |
| 69 | {{{#!div style="background-color:lightblue" |
| 70 | strong |
| 71 | }}} |
| 72 | }}} |
| 73 | {{{#!td |
| 74 | {{{#!div style="background-color:lightblue" |
| 75 | strong |
| 76 | }}} |
| 77 | }}} |
| 78 | {{{#!td |
| 79 | {{{#!div style="background-color:yellow" |
| 80 | very strong |
| 81 | }}} |
| 82 | }}} |
| 83 | {{{#!td |
| 84 | {{{#!div style="background-color:lightblue" |
| 85 | strong |
| 86 | }}} |
| 87 | }}} |
| 88 | {{{#!td |
| 89 | {{{#!div style="background-color:yellow" |
| 90 | very strong |
| 91 | }}} |
| 92 | }}} |
| 93 | }}} |
| 94 | |
| 95 | Privacy strength rating legend: |
| 96 | {{{#!div style="background-color:none" |
| 97 | n.'' ''a.:: |
| 98 | }}} |
| 99 | not applicable |
| 100 | {{{#!div style="background-color:red" |
| 101 | none:: |
| 102 | }}} |
| 103 | no protection, not counting read-only wiki pages for (very weak) privacy |
| 104 | {{{#!div style="background-color:orange" |
| 105 | weak:: |
| 106 | }}} |
| 107 | prevents unrecognized content change without read-protection |
| 108 | {{{#!div style="background-color:lightblue" |
| 109 | strong:: |
| 110 | }}} |
| 111 | depending on server security of Trac system software (plugins included) and storage for Trac content and private user keys |
| 112 | {{{#!div style="background-color:yellow" |
| 113 | very strong:: |
| 114 | }}} |
| 115 | depending on client security for private user key storage |
| 116 | {{{#!div style="background-color:lightgreen" |
| 117 | ultimate:: |
| 118 | }}} |
| 119 | independent of client and server security for private user key storage |
| 120 | |
| 121 | Ultimate privacy doesn't assume any trust outside of Trac system software (plugins included). This kind of inherit Trac content protection is neither available nor planned yet. |