Merge pull request #111 from joshuagl/joshuagl/rm-slow-retrieval

lukpueh · web-flow · commit 7c9c1736ac4c · 2020-09-29T12:02:52.000+02:00
Remove slow retrieval attacks from protections
diff --git a/tuf-spec.md b/tuf-spec.md
@@ -1,8 +1,8 @@
 # <p align="center">The Update Framework Specification
 
-Last modified: **23 September 2020**
+Last modified: **29 September 2020**
 
-Version: **1.0.6**
+Version: **1.0.7**
 
 We strive to make the specification easy to implement, so if you come across
 any inconsistencies or experience any difficulty, do let us know by sending an
@@ -183,10 +183,6 @@ repo](https://github.com/theupdateframework/specification/issues).
       software that is older than that which the client previously knew to be
       available.
 
-      + **Slow retrieval attacks.**  An attacker cannot prevent clients from
-      being aware of interference with receiving updates by responding to
-      client requests so slowly that automated updates never complete.
-
       + **Vulnerability to key compromises.** An attacker, who is able to
       compromise a single key or less than a given threshold of keys, cannot
       compromise clients.  This includes compromising a single online key (such
