> Good thinking! I suppose you would propose to keep the entire medical record in the
>Eternity Service?
Definitely _not_ (although if it was encrypted before being given to the service it
would garantee persistence of an
encrypted record, accessible from anywhere, but only decryptable by the owner of the
secret key, but that is another matter
altogether.)
>the Eternity service cannot deliver both availability and confidentiality. That is
>the design trade-off.
Granted, but you were only after availability were you not - worrying that somebody
could delete the notarised hash of the
message digest.
Which having been through at least one one way crytpogtraphic function cannot be used
to recreate the original
confidential notes...
BUt the maker of those notes could have been attacked by destruction at the notary of
the record of signing of hte notes...
>But the cost is that anyone else will be able to use the same method and get your
>data. --
The data in this respect being the signature/notary stamp...
Working as designed I think.
--
Adrian Midgley
Exeter
http://www.swis.net/midgley/
