2009/7/15 Pablo Manalastas <[email protected]>: >> >> digital signature can test the authenticity of the original >> program... > > I am thinking of something even more primitive: SHA256 checksum. > If the checksum of the original approved program is given to all > watchers, then anytime during election, the checksum of the running > can be computed and compared with the original. I do not trust > the digital signature of Smartmatic. Smartmatic may have several > versions of the election programs running on the 82,200 computers, > some of which can cheat, and still Smartmatic can digitally sign > all the different versions. The only thing that Smartmatic's > signature means is that the program came from them. But there > may be several different programs. >
ok doc.. we will going to use SHA2 family.. SHA256 is safe to start with... but still we need comelec to digitally sign the program for legal purposes such as we can prove to the court that the program sent to PCOS machines was coming really from them if there is a cheat code in that program... to CenPEG which is not part of plug mailing list.. here is my explanation regarding to digital signature... http://archives.free.net.ph/message/20090716.014418.9b831ab3.en.html fooler. _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
