[145062] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Crypto dongles to secure online transactions

daemon@ATHENA.MIT.EDU (Matt Crawford)
Wed Nov 11 10:45:06 2009

Date: Wed, 11 Nov 2009 09:36:48 -0600
From: Matt Crawford <crawdad@fnal.gov>
In-reply-to: <8849609D-084A-46A4-8C70-65D2B04418A4@lrw.com>
To: Jerry Leichter <leichter@lrw.com>
Cc: Cryptography List <cryptography@metzdowd.com>


On Nov 10, 2009, at 8:44 AM, Jerry Leichter wrote:

> Whether or not it can, it demonstrates the hazards of freezing  
> implementations of crypto protocols into ROM:  Imagine a world in  
> which there are a couple of hundred million ZTIC's or similar  
> devices fielded - and a significant vulnerability is found in the  
> protocol they speak.

Imagine a couple of hundred million devices with updatable firmware on  
them, and one or more rogue updates in the wild.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[145062] in cryptography@c2.net mail archive

Re: Crypto dongles to secure online transactions

daemon@ATHENA.MIT.EDU (Matt Crawford)Wed Nov 11 10:45:06 2009

daemon@ATHENA.MIT.EDU (Matt Crawford)
Wed Nov 11 10:45:06 2009