1994-06-19 - Re: Hardware generators was: your mail

Header Data

From: roy@sendai.cybrspc.mn.org (Roy M. Silvernail)
To: cypherpunks@toad.com
Message Hash: 408940b8678d9dc70fd42b617c858a27f254151b923913062a7831538cbeacca
Message ID: <940619.102103.9N5.rusnews.w165w@sendai.cybrspc.mn.org>
Reply To: <199406191450.KAA29861@duke.bwh.harvard.edu>
UTC Datetime: 1994-06-19 16:02:09 UTC
Raw Date: Sun, 19 Jun 94 09:02:09 PDT

Raw message

From: roy@sendai.cybrspc.mn.org (Roy M. Silvernail)
Date: Sun, 19 Jun 94 09:02:09 PDT
To: cypherpunks@toad.com
Subject: Re: Hardware generators was: your mail
In-Reply-To: <199406191450.KAA29861@duke.bwh.harvard.edu>
Message-ID: <940619.102103.9N5.rusnews.w165w@sendai.cybrspc.mn.org>
MIME-Version: 1.0
Content-Type: text/plain


In list.cypherpunks, adam@bwh.harvard.edu writes:

>         Understood, but its not a matter of addressing 90% or the
> other 10%, its a matter of "Is the security gain in building a card
> that only hands out each number once worth cutting out 10% of the
> market?"  I think that if you are worried about rouge code on your
> machine, you aren't going to run on  a computer that can't protect its
> memory from random browsing.  (I can still access all of a PC's memory
> from normal code, can't I?)  Thus, building a PC card doesn't really
> afford you a gain in security if I can use my hostile code to read
> PGP's memory locations.  If you agree with that, then there is no good
> reason not to build a serial port dongle, and include me in your
> potential customers. :)

The card design isn't so much security as avoiding scarce real estate on
a PC (which, at somewhere over 130 million units fielded, is a not
inconsiderable market segment).  If this were a dongle device, I'd want
it on a parallel port.  Many machines don't have a spare serial port,
and transparent dongles would be harder to do there, anyway.  But
transparent parallel port dongle technology is already established.
- -- 
    Roy M. Silvernail       |  #include <stdio.h>            | PGP 2.3 public
roy@sendai.cybrspc.mn.org   |  main(){                       | key available
                            |  int x=486;                    | upon request
                            |  printf("Just my '%d.\n",x);}  | (send yours)

Version: 2.6