[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Physical access without ultimate power? (was Re: Design principles a
From: |
Pierre THIERRY |
Subject: |
Re: Physical access without ultimate power? (was Re: Design principles and ethics (was [...]))) |
Date: |
Mon, 1 May 2006 06:03:09 +0200 |
User-agent: |
Mutt/1.5.11+cvs20060403 |
Scribit Bas Wijnen dies 30/04/2006 hora 22:50:
> > The problem was: if you cannot verify this, you cannot rely on this.
> You can if you are the machine owner, which is usual for systems with
> really sensitive data.
We are precisely talking about having sensitive data on a system owned
by someone else...
> And you can trust the machine owner of a different computer to not use
> this information.
Some sensitive data is just incompatible with trust. I won't bring my
secret OpenPGP keyring at my work, but that forces me to connect to my
home system to send mail. If I could check that noone will be able to
read my secret key when it is in my session, I would happily bring it at
work.
> With this chip, it's possible to verify it technically, but this
> results among other things in the fact that the machine owner can no
> longer upgrade his machine in case a bug is found in the critical
> parts.
Are you sure this statement is true? Isn't it just that as long as the
new system is not given a certification, it won't be able to access data
encrypted with the previous one?
Doubtfully,
Nowhere man
--
address@hidden
OpenPGP 0xD9D50D8A
signature.asc
Description: Digital signature
- Re: Physical access without ultimate power? (was Re: Design principles and ethics (was [...]))),
Pierre THIERRY <=