I don't know about the rest of it, but a former colleague of mine worked on
a secure booting system using a smartcard. I don't see anything on his web
page about it but you could contact him directly.
http://www.citi.umich.edu/u/itoi/
But if you really are concerned about very skilled hackers
Wouldn't it be great if someone here could pump up the movement in this
manner.
See below ;-)
Greetings,
SecurityFocus is currently looking for writers to develop articles for
the Linux focus area. Articles are generally 2000 - 2200 words long, and
SecurityFocus offers compensation for each
On Fri, 22 Jun 2001, Jim Rees wrote:
But if you really are concerned about very skilled hackers you will need
significant hardware protection, like a processor with integrated boot code
or an epoxy potted processor and boot rom module. Even then you won't be
able to completely protect the
The user will be able to change the code, that's not the matter, but it wont be
able to run it on my customer's hardware. That's the point. And I don't this it
goes against any law neither any license.
I'm sure it doesn't go against any GPL spirit. It's even possible that my
source will be
On Fri, Jun 22, 2001 at 10:00:35PM +0200, Patrick Valsecchi wrote:
The user will be able to change the code, that's not the matter, but it wont be
able to run it on my customer's hardware. That's the point. And I don't this it
goes against any law neither any license.
I'm sure it doesn't
Aren't CRC algorithms easy to reverse?
Sorry for the sloppy terminology. Obviously this has to be a cryptographic
hash, not just a crc. But I still think performance will not be a huge
issue.
dumaguete# ls -l /bsd
-rwxr-xr-x 1 rees wheel 2172784 Jan 25 16:11 /bsd
dumaguete# time md5 /bsd
Ok, so you have a bunch of executables and a table of pre-computed CRC's.
No, you have a bunch of executables, and for each you have a crypto hash
signed with a private key.
You could store the public key in the secure rom, but this guy wants to use
a smart card, presumably because he wants
On Fri, 22 Jun 2001, Jim Rees wrote:
Ok, so you have a bunch of executables and a table of pre-computed CRC's.
No, you have a bunch of executables, and for each you have a crypto hash
signed with a private key.
Ok.
You could store the public key in the secure rom, but this guy wants
