Re: [9fans] First-timer help

Thu, 21 Jul 2005 10:33:53 -0700 


Dave Eckhardt wrote:


If you can't trust the BIOS, you can't trust *anything* about

the machine.  



I want a bios that is digitally signed by multiple properly-enrolled 
professionally licensed individuals, with those licenses being signed by 
city hall. The licenses should include:


code developer
code auditor
building inspector


None of these should be the usual worthless organizational code signing 
signatures. (Right after the serpent said "try this fruit" he added, "by 
the way, it's ok if the 'Arthur Andersen' signature means 'a bunch of 
people collectively calling themselves Arthur Andersen.") The biometrics 
of the signers should be on file, signed by the enrollment officer, who 
is a Latin Notary.



The bios should be able to do only one thing: hand over control to a 
similarly code-signed hypervisor, and only if everything is kosher.



There are business-card-sized CD-R's, so if you
do trust the BIOS you can have a read-only bootable system in

your wallet at all times.  


LNX-BBC is a good one:

http://www.lnx-bbc.org/


However: a cd will last about a month in your wallet before it's no 
good. Unless you have a rigid wallet.


--
Wes Kussmaul
CIO
The Village Group
738 Main Street
Waltham, MA 02451

781-647-7178



The information contained in this electronic message and any attachments 
to this message are intended for the exclusive use of the addressee(s) 
and may contain confidential or privileged information. If you are not 
the intended recipient, please notify attorney Mort Hapless at Vulner, 
Exposed & Wideopen LLP immediately at either (781) 647-7178, or at 
[EMAIL PROTECTED], and destroy all copies of this message and any 
attachments. No, really. Really. Listen, we mean it! Hey, if you don’t 
stop reading that confidential stuff about our client you’re in big 
trouble. OK, we’re the ones in trouble but we’ll find a way to go after 
you, or at least we think we may be able to. Look, we’re begging you. 
Just click the delete button and move on to a message that concerns you, 
OK? Please?? We'll buy you lunch...



Identity is the Foundation of Security™. Let The Village Group 
(village.com) ensure that only intended recipients receive your 
confidential messages.
























					Reply via email to