1994-12-28 - Re: Why I have a 512 bit PGP key

Header Data

From: Jeff Barber <jeffb@sware.com>
To: eric@remailer.net (Eric Hughes)
Message Hash: 6c2855386501f9d7c65be1ff1a834ef8a85b1cf6e7108dfadf8048b5ff4d027c
Message ID: <9412281344.AA09514@wombat.sware.com>
Reply To: <199412280713.XAA02404@largo.remailer.net>
UTC Datetime: 1994-12-28 14:03:12 UTC
Raw Date: Wed, 28 Dec 94 06:03:12 PST

Raw message

From: Jeff Barber <jeffb@sware.com>
Date: Wed, 28 Dec 94 06:03:12 PST
To: eric@remailer.net (Eric Hughes)
Subject: Re: Why I have a 512 bit PGP key
In-Reply-To: <199412280713.XAA02404@largo.remailer.net>
Message-ID: <9412281344.AA09514@wombat.sware.com>
MIME-Version: 1.0
Content-Type: text/plain


Eric Hughes writes:
> 
>    From: "Ian Farquhar" <ianf@sydney.sgi.com>
> 
>    > Recompile the binary from newly uploaded source each time.  MD5 source
>    > isn't more than about 10K long.  That's all of a few seconds of upload
>    > time.
> 
>    Irritating [...]
> 
> ???  An upload can be automated, just like anything other solution.

Then the automated part (script or whatever) simply becomes another piece
that needs to be protected.


> You can't go about protecting against the modification of binaries by
> relying upon one of your binaries being better protected than the
> rest.  There's an infinite regress involved here.  The solution is to
> go outside the regress.  Recreating the binary from scratch is one
> way.  I'm sure there are others.

No -- in the absence of other measures, recreating the binary from 
scratch is not such a way.  You've merely added the compiler and its
associated utilities to your regression list.  Nothing is gained --
other than additional irritation and delay.


-- Jeff

Thread

• Return to December 1994

• Return to “Adam Shostack <adam@bwh.harvard.edu>”
• Return to “eric@remailer.net (Eric Hughes)”
• Return to ““Ian Farquhar” <ianf@sydney.sgi.com>”
• Return to “Jeff Barber <jeffb@sware.com>”
• Return to “Matt Blaze <mab@research.att.com>”
• Return to ““Perry E. Metzger” <perry@imsi.com>”

• Return to “Thomas Grant Edwards <tedwards@src.umd.edu>”

• 1994-12-23 (Fri, 23 Dec 94 12:38:05 PST) - Why I have a 512 bit PGP key - Matt Blaze <mab@research.att.com>
  • 1994-12-28 (Tue, 27 Dec 94 18:08:12 PST) - Re: Why I have a 512 bit PGP key - “Ian Farquhar” <ianf@sydney.sgi.com>
    • 1994-12-28 (Tue, 27 Dec 94 18:41:01 PST) - Re: Why I have a 512 bit PGP key - eric@remailer.net (Eric Hughes)
      • 1994-12-28 (Tue, 27 Dec 94 19:06:49 PST) - Re: Why I have a 512 bit PGP key - Adam Shostack <adam@bwh.harvard.edu>
      • 1994-12-28 (Tue, 27 Dec 94 19:07:54 PST) - Re: Why I have a 512 bit PGP key - “Perry E. Metzger” <perry@imsi.com>
        • 1994-12-28 (Tue, 27 Dec 94 20:52:26 PST) - Re: Why I have a 512 bit PGP key - eric@remailer.net (Eric Hughes)
      • 1994-12-28 (Tue, 27 Dec 94 19:08:10 PST) - Re: Why I have a 512 bit PGP key - “Ian Farquhar” <ianf@sydney.sgi.com>
        • 1994-12-28 (Tue, 27 Dec 94 20:55:04 PST) - Re: Why I have a 512 bit PGP key - eric@remailer.net (Eric Hughes)
          • 1994-12-28 (Tue, 27 Dec 94 21:39:09 PST) - Re: Why I have a 512 bit PGP key - “Ian Farquhar” <ianf@sydney.sgi.com>
            • 1994-12-28 (Tue, 27 Dec 94 23:13:16 PST) - Re: Why I have a 512 bit PGP key - eric@remailer.net (Eric Hughes)
              • 1994-12-28 (Wed, 28 Dec 94 06:03:12 PST) - Re: Why I have a 512 bit PGP key - Jeff Barber <jeffb@sware.com>
                • 1994-12-28 (Wed, 28 Dec 94 07:51:50 PST) - Re: Why I have a 512 bit PGP key - eric@remailer.net (Eric Hughes)
                  • 1994-12-28 (Wed, 28 Dec 94 08:40:21 PST) - Re: Why I have a 512 bit PGP key - Jeff Barber <jeffb@sware.com>
                    • 1994-12-28 (Wed, 28 Dec 94 14:28:09 PST) - Re: Why I have a 512 bit PGP key - Thomas Grant Edwards <tedwards@src.umd.edu>