[13575] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: The real problem that https has conspicuously failed to fix

daemon@ATHENA.MIT.EDU (Pete Chown)
Wed Jun 11 10:45:18 2003

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 11 Jun 2003 14:50:08 +0100
From: Pete Chown <Pete.Chown@skygate.co.uk>
To: cryptography@metzdowd.com
In-Reply-To: <557dd8f2519377887312df07a5dd0977@ecn.org>

Anonymous wrote:

> The solution to this [key theft by malware] is Palladium (NGSCB).

You could achieve the same protection on any system with decent 
mandatory access controls.  SELinux would be fine, for example.  You 
could have a program like ssh-agent which performs the public key 
operations; you then deny everything else access to the key store.

-- 
Pete

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[13575] in cryptography@c2.net mail archive

Re: The real problem that https has conspicuously failed to fix

daemon@ATHENA.MIT.EDU (Pete Chown)Wed Jun 11 10:45:18 2003

daemon@ATHENA.MIT.EDU (Pete Chown)
Wed Jun 11 10:45:18 2003