12Oct2009 (UTC +8) On Mon, Oct 12, 2009 at 17:53, Oscar Plameras <[email protected]> wrote: > What you mean is the trustworthiness of the people running the system.
I think Danny Ching got it right sir. What people want is the answer as to how trustworthy is the AES. One of the metrics in gauging the trustworthiness of any IT product, is it's ability to protect itself from abuse, whether from other computers, or external hackers, or unscrupulous "insiders". > I'll say one thing from my experience, you can't use the system to arrest > human corruption. You must have not employed any psychic security officer yet, have you? <joke!> There will always be evil in this world. It won't go away. Good vs evil, it exists since the beginning of time. The thing is, good guys should always try to stop evil as much as they can. If good people believe that there is corruption, then they are morally obligated to fight it. If it so happens that people see that the fight is inside the AES, then carry on! "All that is necessary for evil to succeed is that good men do nothing." --Edmund Burke. > On Mon, Oct 12, 2009 at 8:35 PM, Danny Ching <[email protected]> wrote: >> I think I see where you are coming from. It is not the system we are >> worried about sir. It is the trustworthiness of the system. A simple >> exposure of the code will show that it is not doing anything out of >> the ordinary. Besides. If the code is indeed simple as you said, then >> checking the cource code should be easy. Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA, CCSI, CSA http://www.laggui.com ( Singapore / Manila / California ) Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer PGP fingerprint = 6E62 A089 E3EA 1B93 BFB4 8363 FFEC 3976 FF31 8A4E _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
