On Sat, 2003-05-10 at 10:04, Toad wrote: > On Fri, May 09, 2003 at 11:59:59PM -0400, Edward J. Huff wrote: > > (I never made one before because I can't guarantee that no one > > has hacked by system and stolen the private key. To know that, I'd need > > a separate secure system...) > > There is no such thing as a secure internet connected computer system :)
True. I was thinking of a little box which is isolated except when I wanted to sign something, and which communicates in some nonstandard way across nonstandard hardware so that a hacker with root would have to spend quite a while looking around to discover the software I use to sign things. It would also be immune to video cameras looking over my shoulder (LCD display visible only when held up to the eyes), and be encased in a Faraday cage... It would always offer the chance to view exactly what was being signed before signing it. Needless to say, it hasn't gotten to the top of the priority list... -- Ed Huff _______________________________________________ devl mailing list devl at freenetproject.org http://hawk.freenetproject.org:8080/cgi-bin/mailman/listinfo/devl
