[Top] [All Lists]

Re: The armour issue

1997-11-26 20:53:41
Hash: SHA1

At 07:04 PM 11/26/97 -0800, Bill Frantz wrote:
The first piece of signed code I ever got was MacPGP 2.6.2.  I like the
idea of detached signatures on executable files.  One use I can see is
signing every executable on your system and storing the signatures
separately.  Then you can periodically check the system for altered code.
(Too bad Mac code normally alters itself.)

This could be the basis of an extremely secure anti-virus scanner.  If the
signature key and verification program are kept only on a write-protected
floppy disk that is not usually in the computer, it would be extremely
difficult for a virus/trojan to alter a file without your knowledge.

How do armor and MIME compare in their support of this application?

Binary is the way to go here.  MIME and armor are irrelevant and
unnecessary in an environment capable of handling 32-bit binary data.  Save
them for primitive systems that cannot yet deal with 8-bit data.

Version: PGP for Business Security 5.5


Jonathan Wienke

PGP Key Fingerprints:
7484 2FB7 7588 ACD1  3A8F 778A 7407 2928
3312 6597 8258 9A9E D9FA  4878 C245 D245 EAA7 0DCC

"If ye love wealth greater than liberty, the tranquility of servitude
greater than the animating contest for freedom, go home from us in peace.
We seek not your counsel, nor your arms. Crouch down and lick the hand that
feeds you. May your chains set lightly upon you; and may posterity forget
that ye were our countrymen."
-- Samuel Adams

"Stupidity is the one arena of of human achievement where most people
fulfill their potential."
-- Jonathan Wienke

Never sign a contract that contains the phrase "first-born child."

RSA export-o-matic:
print pack"C*",split/\D+/,`echo "16iII*o\U(_at_){$/=$z;[(pop,pop,unpack"H*",<>

<Prev in Thread] Current Thread [Next in Thread>