Detect and handle malice: InvalidSignature

Description

When an event is received but the Signature doesn’t match the creator,
it can’t simply be used as proof of malice without the entire request as it would be impossible to distinguish an invalid accusations from a real one.

In that case, handle_request and handle_response should return Error<InvalidSignature>

Environment

None

Assignee

Pierre Chevalier

Reporter

Qi Ma

Start date

2018/08/10

End date

2018/08/10

Task progress

None

Baseline start date

None

Baseline end date

None

Components

Priority

Minor
Configure