Date: Tue, 28 Oct 2003 22:14:51 -0800 From: Terry Lambert <tlambert2@mindspring.com> To: Timo Sirainen <tss@iki.fi> Cc: freebsd-advocacy@freebsd.org Subject: Re: Friendly and Secure Desktop Operating System Message-ID: <3F9F5ADB.AE6E245A@mindspring.com> References: <1067367085.15026.38.camel@hurina> <1067372446.15029.97.camel@hurina>
next in thread | previous in thread | raw e-mail | index | archive | help
Timo Sirainen wrote: > That is the potentially difficult part to get secure while still being > user friendly. Actually, the potentially difficult part is booting. In order to boot, you have to have an initial delegation of all authority to something that is allowed to redelegate it to other parts of the system, applications, etc.. It also has to be the intermediary to delegating the authority to the user who you are trusting to tell you whether or not you are allowed to delegate authority to arbitrary programs. Short of building a serial number into each processor, and making it an unpriviledged, untrappable machine instruction to obtain the serial number from the processor and then use it to be able to cryptographically implement (without having to actually trust the kernel you are running on, authentication, authorization, and non-repudiation (this last one is the stumbling block for privacy advocates and the love-child of the RIAA and MPAA), there's really no way to accomplish any of this reliably. -- Terry
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3F9F5ADB.AE6E245A>