Minimizing transitive trust threats in software management systems

@article{Boender2015MinimizingTT,
  title={Minimizing transitive trust threats in software management systems},
  author={Jaap Boender and Giuseppe Primiero and Franco Raimondi},
  journal={2015 13th Annual Conference on Privacy, Security and Trust (PST)},
  year={2015},
  pages={191-198}
}
We consider security threats in software installation processes, posed by transitively trusted dependencies between packages from distinct repositories. To analyse them, we present SecureNDC, a Coq implemented calculus using an explicit trust function to bridge repository access and software package installation rights. Thereby, we resolve a version of the minimum install problem under trust conditions on repositories.