what I was thinking was that the viewer binary would somehow be signed in a way that it could be verified as having been generated by someone that has been given a trust key from LL, the exactly how part went down the drain kinda
Mike Dickson escreveu: > How does that help validate a viewer is "certified"? I can see a OTP to > validate a user. The point with the GSM example is the source info is > "tamper proof." I don't see that here with a viewer, especially an open > source one where source needs to be distributed. > > On Wed, 2009-10-21 at 15:59 +0000, Anders Arnholm wrote: > >> No the screat are probalt some muchg lnger than allen, it will be >> trasforemed with an algoritm. >> >> f(SKEY, Challange) >> >> Is what are going to be sent, this to make sure that KEY are not sent >> over the net and intercepter by anyone on the internet. The problem some >> to the viewer have to be able to make the calculation f(SKEY, Challange) >> to make this computation the coputer will need to have both the function >> f(k,c) and the SKEY someware. Whan you have both these to pices of >> information in one computer figuring out f() and SKEY are a trivial >> work. >> > > > > _______________________________________________ Policies and (un)subscribe information available here: http://wiki.secondlife.com/wiki/SLDev Please read the policies before posting to keep unmoderated posting privileges
