{Security improvements in the \TeX\ Live Manager and installer} {Norbert Preining} {Since the switch to the current distribution method and the introduction of network installs and updates, some years ago, many things have changed in the \TeX\ (Live) world. But one thing has not kept up with the new distribution methods: security. Until now, there has been almost no verification of a package as downloaded from the \CTAN\ mirrors compared to the original package created in \acro{TL}. Although we have been shipping \acro{MD5} checksums and sizes in the accompanying information, these were used only in rare instances (namely, when restarting a failed installation). We report about the recent improvements and consistent confirmation of checksums and sizes of the downloaded packages, as well as (future?)\ improvements regarding strong cryptographic signatures of the package information.}