On 6/20/07, Karel Kulhavy <[EMAIL PROTECTED]> wrote:
This kind of security design is assuming favourable constellation of
uncontrollable environmental noises to scramble the information we are
knowingly leaking. It's basically a snake oil. We have no proof that under
every conceivable circumstances the noises will be present in a way that
completely masks the information leak.
Why not write the keyboard driver the same way how the friend did it in his OS
- using bitmasking and avoiding conditional jumps and lookup tables? Then the
security would be guaranteed and not just hoped for.
so why don't you provide us with a program that recovers the root
password? that will make it much easier to assess whether the attack
is real or not.
