Legal disassembly

Legal disassembly
Mark Rasch, 2005-08-22

When security researcher and ISS employee Michael Lynn went to give a presentation at the Black Hat conference in Las Vegas, little did he know he would ignite a legal firestorm questioning whether even the act of looking for security vulnerabilities violates the law.

Expand all | Post comment

Legal disassembly 2005-08-22
Anonymous

Legal disassembly 2005-08-23
Anonymous (1 replies)

Re: Legal disassembly 2005-08-29
Mark D. Rasch

Legal disassembly 2005-08-23
Anonymous (1 replies)

Re: Legal disassembly 2005-08-23
Anonymous

Legal disassembly 2005-08-23
Anonymous

Legal disassembly 2005-08-23
Coujou

Legal disassembly 2005-08-24
Anonymous

Legal disassembly 2005-08-25
Anonymous

Legal disassembly 2005-08-30
Alexey Vesnin

Legal disassembly 2005-11-22
squeak

When you buy a car, you're not prevented from opening the hood and taking out the engine. You're not even prevented from taking apart the engine.

Similarly, you're not prevented from analyzing each letter when you buy a book. Just as they're standardized components of words, so too are opcodes standardized components of software.

I think that maybe vendors should employ these people rather than sending the law after them. Why is unsafe soft/firmware such good business in their minds?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/349/32707#32707