17 Dec
2003
17 Dec
'03
11:17 p.m.
Adam Shostack writes:
Its worth noting that the source code to Julf's Penet remailer is not public (AFAIK). People use it becuase they trust Julf, or trust people who trust Julf.
Yeah, but remember -- there is very little that Julf's code could do to "cheat". Julf's system maintains a mapping of users to aliases anyway, so he has no need to "pervert" the system -- he can do all the bad things we worry about with it working correctly. We therefore need not see the code to trust the system, because the only way that the system is trustworthy is if Julf is trustworthy. Other systems based on cryptography might not be in this position. Perry