> I am going to have a server machine doing encryption. How do you > protect against server operator or admin tampering. This is a > scenario where internal threat or hostility is high; you cannot trust > your own guys. (Real situation; not paranoid.)
You can't. There is little to no defense possible against a trusted insider that's gone rogue. The best you can do is to vet your people carefully and, in the event of treachery, to use whatever legal means are available to dissuade future treachery. Kim Philby, Aldrich Ames, John Walker, Robert Hanssen, Reality Winner, Chelsea Manning, Ed Snowden... _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users