[6279] in cryptography@c2.net mail archive
Re: Debit card fraud in Canada
daemon@ATHENA.MIT.EDU (Eugene Leitl)
Tue Dec 14 15:42:24 1999
From: Eugene Leitl <eugene.leitl@lrz.uni-muenchen.de>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <14422.46785.343646.456160@lrz.uni-muenchen.de>
Date: Tue, 14 Dec 1999 13:29:37 -0800 (PST)
To: "Arrianto Mukti Wibowo" <iscp9063@nus.edu.sg>
Cc: <cryptography@c2.net>
In-Reply-To: <009c01bf45fc$0c4fe160$8c3d8489@muki>
Arrianto Mukti Wibowo writes:
> About Mondex, probably you are right. No information is available about the
> internals of Mondex, and is kept secret, unlike CAFE which the specification
The fact that Mondex keeps its VM specs secret does not forebode well
for its security. Apparently, the VM designer also doesn't know squat
about good VM design for C programs.
Make from it whatever you will.
> was made open (it was a research project anyway). We can assume that Mondex
> does rely heavily on the tamper resistant device.
