1994-12-28 - Re: Why I have a 512 bit PGP key

Header Data

From: eric@remailer.net (Eric Hughes)
To: cypherpunks@toad.com
Message Hash: 39ca26f8acba2ef0fc8bbfb081ae25b3e190e8d7e8c18f7f7ea15b510d625bb7
Message ID: <199412280452.UAA02244@largo.remailer.net>
Reply To: <9412280307.AA03703@snark.imsi.com>
UTC Datetime: 1994-12-28 04:52:26 UTC
Raw Date: Tue, 27 Dec 94 20:52:26 PST

Raw message

From: eric@remailer.net (Eric Hughes)
Date: Tue, 27 Dec 94 20:52:26 PST
To: cypherpunks@toad.com
Subject: Re: Why I have a 512 bit PGP key
In-Reply-To: <9412280307.AA03703@snark.imsi.com>
Message-ID: <199412280452.UAA02244@largo.remailer.net>
MIME-Version: 1.0
Content-Type: text/plain


   Read Ken Thompson's Turing Award lecture for why that isn't
   sufficient. Its quite amusing.

I'm quite familiar with the work.  [For those who aren't, it's about
compilers that compile in self-perpetuating bugs from their own source
code.]

The question, however, is not one of possibility but timeliness.
Attacks against persistent information are easier than attacks against
transient information.  If the sysadmin is going to go modifying
compilers, it's no longer annoyance.

Eric





Thread