File tree Expand file tree Collapse file tree 1 file changed +11
-0
lines changed Expand file tree Collapse file tree 1 file changed +11
-0
lines changed Original file line number Diff line number Diff line change @@ -55,6 +55,8 @@ time described above.
5555
5656## Scope
5757
58+ Here is the current list of items that are in scope:
59+
5860- Privileged clients may request credentials via this service[ ^ 1 ] for any origin.
5961- The list of privileged clients cannot change without:
6062 - ` root ` privileges, or
@@ -63,6 +65,15 @@ time described above.
6365 - ` root ` privileges, or
6466 - user consent[ ^ 2 ]
6567
68+ We implicitly trust the kernel and D-Bus, so any attacks that exploit those are
69+ out of scope for this project.
70+
71+ Some other attacks that are explicitly out of scope are those that require:
72+
73+ - physical access
74+ - direct access to authenticators
75+ - root privilege escalation
76+
6677[ ^ 1 ] :
6778 Various systems may allow users to interact with authenticators directly
6879 (e.g. allowing unrestricted permission to USB devices or Bluetooth service
You can’t perform that action at this time.
0 commit comments