Re: Difference between TCPA-Hardware and a smart c: msg#00253 encryption.general

On Tue, 23 Dec 2003, Seth David Schoen wrote:

>When attestation is used, it likely will be passed in a service like
>HTTP, but in a documented way (for example, using a protocol based on
>XML-RPC). There isn't really any security benefit obtained by hiding
>the content of the attestation _from the party providing it_!

It's not the parties who are interested in security alone we're worried
about. There is an advantage in profiling and market research, so I
expect anyone able to effectively subvert the protocols to attempt
to hide the content of remote attestataion.

Bear

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@xxxxxxxxxxxx

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Repudiating non-repudiation: 00253, robin benson
Next by Date:	Re: I don't know PAIN...: 00253, Jerrold Leichter
Previous by Thread:	Re: Difference between TCPA-Hardware and a smart card (was: example: secure computing kernel needed)i: 00253, Seth David Schoen
Next by Thread:	Re: hiding attestation from the consumer: 00253, John Gilmore
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Repudiating non-repudiation: 00253, robin benson

Next by Date:

Re: I don't know PAIN...: 00253, Jerrold Leichter

Previous by Thread:

Re: Difference between TCPA-Hardware and a smart card (was: example: secure computing kernel needed)i: 00253, Seth David Schoen

Next by Thread:

Re: hiding attestation from the consumer: 00253, John Gilmore

Indexes:

[Date] [Thread] [Top] [All Lists]

Re: Difference between TCPA-Hardware and a smart card (was: example: secure: msg#00253

encryption.general