On Monday 05 June 2006 14:43, Hamish Marson wrote: > Zan Lynx wrote: > > Hmm.. I wouldn't say impossible... If the signing is avilable on the > same machine, then it just needs a backdoor (e.g. a handy security > hole) access to the process that does the signing to enable the > malicious code to be signed & away they go...
You boot the machine from a known-clean boot-cd with the key on it, sign all the software, and reboot. Probably not a good solution for personal computers, but I can see it happening in a company. On a PC, keep the key on a read-only USB stick. > > Or say you have confidential legal documents. With DRM they can be > > restricted to display by authorized document viewing software, > > only on authorized computer hardware, or on hardware with an > > authorized personal key loaded. > > Hmm... Sounds like a rewording of the RIAA et al's excuses for DRM to > me... How about this one then. You want to order a video card from the Traversal Technology web shop. For that, the shop needs your address, so they can send you the package, and your credit card number, so they can charge you. Of course, you don't want them to pass on that information to anyone else. So, you encrypt it, and require them to use software that won't let them do anything with the information but send you a package and charge you. Of course, they would have to agree to use such software, and it would have to be open source so that you could check whether it works correctly. > > The US DoD has been using these sorts of limits on classified > > information stored in TCSEC Class B secure computer systems for a > > long time now. > > They've never heard of cameras then? Full circle... Spying would be > reduced to finding the doc & photographing them with a 007 style > mini-camera again... Well, obviously they'd have procedures in place to deal with that, too. But there's not much of a point in checking for cameras if people can simply email the secret documents out now is there? You need to plug _all_ the holes. And that includes any digital ones. Lourens
pgpnkBpngrXJU.pgp
Description: PGP signature
_______________________________________________ Open-graphics mailing list [email protected] http://lists.duskglow.com/mailman/listinfo/open-graphics List service provided by Duskglow Consulting, LLC (www.duskglow.com)
