On Wed, 7 Aug 2002, Matt Crawford wrote: > Unless the application author can predict the exact output of the > compilers, he can't issue a signature on the object code. The
Same version of compiler on same source using same build produces identical binaries. > compilers then have to be inside the trusted base, checking a > signature on the source code and reflecting it somehow through a > signature they create for the object code. You have the source, compile it using the official compiler and the official build options, and record the blob. Entity X claims it runs the same system that it gave you the source for. You can't sign it, but you can verify the signed blob is the same. The blob can still be trojaned, but you can disassemble and debug it.