[16331] in cryptography@c2.net mail archive
Re: Financial identity is *dangerous*? (was re: Fake companies, real
daemon@ATHENA.MIT.EDU (Ian Grigg)
Fri Oct 22 00:41:47 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Thu, 21 Oct 2004 17:20:24 +0100
From: Ian Grigg <iang@systemics.com>
To: "James A. Donald" <jamesd@echeque.com>
Cc: cryptography@metzdowd.com
In-Reply-To: <41764C42.24691.43BECA@localhost>
James A. Donald wrote:
>>we already have the answer, and have had it for a decade:
>>store it on a trusted machine. Just say no to Windows XP.
>>It's easy, especially when he's storing a bearer bond worth a
>>car.
>
>
> What machine, attached to a network, using a web browser, and
> sending and receiving mail, would you trust?
None. But a machine that had one purpose in life:
to manage the bearer bond, that could be trusted
to a reasonable degree. The trick is to stop
thinking of the machine as a general purpose
computer and think of it as a platform for one
single application. Then secure that machine/OS/
stack/application combination.
Oh, and make it small enough to fit in the pocket,
put a display *and* a keypad on it, and tell the
user not to lose it.
iang
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
