Hi devs, As you may know, I have taken over the work done by Thomas Delafosse regarding security in XWiki, and in particular, a very good idea initially proposed by Alex Busenius in the early days of the security mailing list in June 2010, replacing PR by Signed Scripts ! A lot of discussions had already been done around the subject, mainly on the security mailing list and Thomas D. has written a very interesting PoC that demonstrate the feasibility and also some drawbacks and issues with our initial concept. I have therefore reviewed all those information, and I have try to draw a conclusion that I am now sharing with you in an open design proposal: http://dev.xwiki.org/xwiki/bin/view/Design/SignedScripts I know you are all really busy with your stuffs and that this is not a short document, but introduction of this change in XWiki will not be a small event, and it may become really difficult to properly evolve if we made it wrong. So I strongly insist that all of you read this proposal and comment on any point that looks odd. For those who would not be at ease with cryptographic matters, a small cryptographic introduction is also included, so (I hope) you may understand the document. There are still some open points in the proposal, marked TODO, on which I would be please to receive your suggestions. I will continue to evolve the proposal based on your comments, until we reach an acceptable solution, but I also start the implementation. Thanks in advance for your time, -- Denis Gervalle SOFTEC sa - CEO