Hi Mark, You might also want to give "signtool" a trial; it creates java archives with digital signatures for each file in the archive. When you get your drives back, you can then use the same tool to create another archive and compare just the signature files to see which files have changed (if any). It may require some batch file work to automate the comparison process, though. Signtool source can be found at: http://www.mozilla.org/projects/security/pki/nss/tools/index.html#signtool
Good luck, up there. Arshad Noor Mark Shuttleworth wrote: > > Hi folks > > This is not NSS/JSS related, but it is crypto related, and this is the > only crypto group I read these days, and I hope nobody minds me asking > too much on this group... I hope even more that someone will have a > quick answer! > > I'm headed to the ISS next week. While there I'll shoot digital pictures > and make digital recordings. These will be stored on a series of > microdrives, flashcards and removable hard drives, which will return > with me in a Soyuz. > > On landing, I have to hand these over to a Russian company that will > review all the materials. They will then give me the reviewed materials > later on. > > I would like to be able to know which if any files have been removed, or > altered, during the review process. > > Essentially, I'd like to have a 'digital manifest' of each piece of > media. It would contain a list of all the files on that disk, their MD5 > or SHA-1 fingerprints. That information should be stored in a digitally > signed file, so it can't be tampered with. > > Ideally, I'd just like to have a utility on my PC that I can fire up, > tell it which drive to 'manifest', and have it create the digital > manifest without further intervention. Then, I'd like to be able to ask > that utility to 'verify' a drive and have it tell me if everything is > OK, or if changes have been made, and to which files. > > I'm guessing PGP plus a bunch of clever batch files could do the trick. > > Does anybody have, or know of, such a hack? > > Hope the subject was interesting enough to justify the offtopic post ;-) > > Mark > > (if you reply directly, please remove the _remove)
