diff options
author | Christian Grothoff <christian@grothoff.org> | 2021-01-18 11:02:28 +0100 |
---|---|---|
committer | Christian Grothoff <christian@grothoff.org> | 2021-01-18 11:02:28 +0100 |
commit | e39c38341a73291fe059e174891282961f3f783d (patch) | |
tree | 9864b59be9c86eced10eb408898e2b1cf2b0a0c9 /presentations | |
parent | 9b8b30f91f743d249f2d58fd5f12e287a9897379 (diff) | |
download | marketing-e39c38341a73291fe059e174891282961f3f783d.tar.gz marketing-e39c38341a73291fe059e174891282961f3f783d.tar.bz2 marketing-e39c38341a73291fe059e174891282961f3f783d.zip |
fix typos
Diffstat (limited to 'presentations')
-rw-r--r-- | presentations/bank/bank.tex | 20 |
1 files changed, 10 insertions, 10 deletions
diff --git a/presentations/bank/bank.tex b/presentations/bank/bank.tex index 3dfaa75..38e5b9c 100644 --- a/presentations/bank/bank.tex +++ b/presentations/bank/bank.tex @@ -229,8 +229,8 @@ GNU Taler must ... \tikzstyle{def} = [node distance=2em and 2.5em, inner sep=1em, outer sep=.3em]; \node (origin) at (0,0) {}; \node (httpd) [def,above=of origin,draw]{httpd}; - \node (helper-rsa) [def, draw, right=of httpd] {helper-rsa}; - \node (helper-eddsa) [def, draw, left=of httpd] {helper-eddsa}; + \node (secmod-rsa) [def, draw, right=of httpd] {secmod-rsa}; + \node (secmod-eddsa) [def, draw, left=of httpd] {secmod-eddsa}; \node (postgres) [def, draw, below=of httpd]{Postgres}; \node (aggregator) [def, draw, right=of postgres]{aggregator}; \node (transfer) [def, draw, below left=of postgres]{transfer}; @@ -240,8 +240,8 @@ GNU Taler must ... \tikzstyle{C} = [color=black, line width=1pt] \draw [<->, C] (httpd) -- (postgres) node [midway, above, sloped] (TextNode) {}; - \draw [<->, C] (httpd) -- (helper-rsa) node [midway, above, sloped] (TextNode) {}; - \draw [<->, C] (httpd) -- (helper-eddsa) node [midway, above, sloped] (TextNode) {}; + \draw [<->, C] (httpd) -- (secmod-rsa) node [midway, above, sloped] (TextNode) {}; + \draw [<->, C] (httpd) -- (secmod-eddsa) node [midway, above, sloped] (TextNode) {}; \draw [<->, C] (aggregator) -- (postgres) node [midway, above, sloped] (TextNode) {}; \draw [<->, C] (wirewatch) -- (postgres) node [midway, above, sloped] (TextNode) {}; \draw [<->, C] (transfer) -- (postgres) node [midway, above, sloped] (TextNode) {}; @@ -323,8 +323,8 @@ GNU Taler must ... \begin{enumerate} \item Create an escrow bank account for the exchange with EBICS access \item Provision offline signing machine (or account during testing) - \item Provision two PostgreSQL databases (for LibEuFin nexus and exchange) - \item Provision user-facing exchange service and helper processes + \item Provision two PostgreSQL databases (for LibEuFin Nexus and exchange) + \item Provision user-facing exchange service and secmod processes \item Provision LibEuFin Nexus (connected to escrow account and providing an internal API to the exchange) \item Test using the ``taler-wallet-cli`` @@ -405,7 +405,7 @@ of the Taler Wire Gateway exist: \begin{itemize} \item Obtain EBICS subscriber configuration (host URL, host ID, user ID, partner ID) for the Exchange's escrow account - \item Deploy the LibEuFin nexus service + \item Deploy the LibEuFin Nexus service \item Create a new LibEuFin bank connection (of type \texttt{ebics}) \item Export and back up the key material for the bank connection (contains EBICS subscriber configuration and private keys) @@ -516,11 +516,11 @@ The exchange needs RSA and EdDSA keys to be available for online signing. \begin{itemize} \item {\tt taler-exchange-secmod-rsa} and {\tt taler-exchange-secmod-eddsa} are the only processes that must have access to the private keys. -\item The helper processes should run under a different UID, but share +\item The secmod processes should run under a different UID, but share the same GID with the exchange. -\item The helpers generate the keys, allow {\tt taler-exchange-httpd} to sign with +\item The secmods generate the keys, allow {\tt taler-exchange-httpd} to sign with them, and eventually delete the private keys. -\item Communication between helpers and {\tt taler-exchange-httpd} is via +\item Communication between secmods and {\tt taler-exchange-httpd} is via a UNIX domain socket. \item Online private keys are stored on disk (not in database!) and should NOT be backed up (RAID should suffice). If disk is lost, we can always |