Re: Microsoft CAPI
Mike McNally writes:
And so what happens when the Microsoft key is compromised? It might be hard to break by purely cryptographic means, but surely there are some people at Microsoft who aren't millionaires.
At 03:13 PM 10/9/96 -0500, Andrew Loewenstern wrote:
I ask: "Who Cares?" It is easy enough to distribute with the secure-non-GAK plug-in a patch for disabling the module authentication. Heck, you could even make an ActiveX applet that did it.
Better than disabling, would be to give the user the choice of whose signature to trust. Perhaps many users would prefer a crypto engine signed by Zimmerman, rather than Microsoft. --------------------------------------------------------------------- | We have the right to defend ourselves | http://www.jim.com/jamesd/ and our property, because of the kind | of animals that we are. True law | James A. Donald derives from this right, not from the | arbitrary power of the state. | jamesd@echeque.com
James A. Donald wrote:
Mike McNally writes:
And so what happens when the Microsoft key is compromised?
At 03:13 PM 10/9/96 -0500, Andrew Loewenstern wrote:
I ask: "Who Cares?" ...
Better than disabling, would be to give the user the choice ...
Agreed, agreed, but my point was to wonder out loud whether such "breakages" of the CAPI safety net that gets it the nod for export would cause the State/Commerce/Spook department to rescind that permission. Maybe since the whole export control thing is just an enormous government-inflated cloud of FUD it doesn't really matter. ______c_________________________________________________________________ Mike M Nally * IBM % Tivoli * Austin TX * How quickly we forget that mailto:m5@tivoli.com mailto:m101@io.com * "deer processing" and "data http://www.io.com/~m101/ * processing" are different!
participants (2)
-
James A. Donald -
Mike McNally