> I suspect the intent was "write-once", a.k.a. "append-only"
Ah OK. But:
- I don't have any append-only hardware on any of my systems (apart from optical drives and printers, but thye're not serious options in most cases). So this is still going to require new hardware, in other words it's a non-starter.
- If I did have append-only hardware, I could just save the log in it. Yes it's bigger than the hashes, but not dramatically bigger, and it has the advantage of actually being tamper-proof rather than just tamper-evident.