-----BEGIN PGP SIGNED MESSAGE----- At 02:49 PM 03/3/96 EST, dlv@bwalk.dm.com (Dr. Dimitri Vulis) wrote:
"A. Padgett Peterson P.E. Information Security" <PADGETT@hobbes.orl.mmc.com> writes:
Those of you who follow FIREWALLS may recall that I premote the use of "minefields" on networks, machines that should never be accessed and will trigger an alarm/response on any access.
Some years ago I wrote a spec for cryptographic securing of notebooks/ E-Mail that included a "duress" capability: a "password" that, when entered would appear to be properly accepted but would report an error on retrieval. Optional was to be overwriting of any material whose access was attempted.
As a side remark, every burglar alarm connected to a phone that I've ever seen has this feature: a code that one can type under duress that will both turn off the alarm and call for help. I wonder how many users will remember this code when under duress.
Many (if not most) alarm companies make the duress code the *reverse* of the normal code. Dave Merriman -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBMTlEzsVrTvyYOzAZAQG9sAQAjfAQP6pEReh/vzx/dsJKU987FOMbqWgV Ik/NtzW7fRRzVYmruribT1ZtPQAcPTkdORZC22xHvk82E/m9Awv9q6Zhkbd29/TQ kcLQ42G3ddcUMA7EWtWtP231tofnyQtM5M7KRdIkKyT7oZdyXgjP42mysjGNDHAy wv2VcfiPwPQ= =fc6C -----END PGP SIGNATURE----- ------------------------------------------------------------- "Giving money and power to government is like giving whiskey and car keys to teenage boys." P. J. O'Rourke (b. 1947), U.S. journalist. <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> For privacy tools: http://www.geocities.com/capitolhill/1148
On Sun, 3 Mar 1996, David K. Merriman wrote:
-----BEGIN PGP SIGNED MESSAGE-----
As a side remark, every burglar alarm connected to a phone that I've ever seen has this feature: a code that one can type under duress that will both turn off the alarm and call for help. I wonder how many users will remember this code when under duress.
Many (if not most) alarm companies make the duress code the *reverse* of the normal code.
This might backfire in the case of self-destructing data. If the attacker backs up the data, and enters the duress code, the real code is easy to guess the second time around.
Dave Merriman -----BEGIN PGP SIGNATURE----- Version: 2.6.2
iQCVAwUBMTlEzsVrTvyYOzAZAQG9sAQAjfAQP6pEReh/vzx/dsJKU987FOMbqWgV Ik/NtzW7fRRzVYmruribT1ZtPQAcPTkdORZC22xHvk82E/m9Awv9q6Zhkbd29/TQ kcLQ42G3ddcUMA7EWtWtP231tofnyQtM5M7KRdIkKyT7oZdyXgjP42mysjGNDHAy wv2VcfiPwPQ= =fc6C -----END PGP SIGNATURE----- ------------------------------------------------------------- "Giving money and power to government is like giving whiskey and car keys to teenage boys." P. J. O'Rourke (b. 1947), U.S. journalist. <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> For privacy tools: http://www.geocities.com/capitolhill/1148
--- My prefered and soon to be permanent e-mail address: unicorn@schloss.li "In fact, had Bancroft not existed, potestas scientiae in usu est Franklin might have had to invent him." in nihilum nil posse reverti 00B9289C28DC0E55 E16D5378B81E1C96 - Finger for Current Key Information
participants (2)
-
Black Unicorn -
David K. Merriman