[24559] in Cypherpunks


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Why I have a 512 bit PGP key

daemon@ATHENA.MIT.EDU (Eric Hughes)
Wed Dec 28 00:01:26 1994

Date: Tue, 27 Dec 1994 20:54:56 -0800
To: cypherpunks@toad.com
In-Reply-To: <9412281357.ZM11227@wiley.sydney.sgi.com> (ianf@sydney.sgi.com)
From: eric@remailer.net (Eric Hughes)

   From: "Ian Farquhar" <ianf@sydney.sgi.com>

   I take it you mean recompile the binary every time?  Because you'd
   need to have source around to recompile it from, and the attacker
   could modify that source even more easily than he or she could hack
   the binary.  The idea is to make tampering with the binary detectable.

Recompile the binary from newly uploaded source each time.  MD5 source
isn't more than about 10K long.  That's all of a few seconds of upload
time.

   I am pretty much certain that to make such
   a system perfectly secure under these conditions is impossible.  

That's right.

Eric


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[24559] in Cypherpunks

Re: Why I have a 512 bit PGP key

daemon@ATHENA.MIT.EDU (Eric Hughes)Wed Dec 28 00:01:26 1994

daemon@ATHENA.MIT.EDU (Eric Hughes)
Wed Dec 28 00:01:26 1994