Palladium holds Promise, and Peril

Palladium holds Promise, and Peril
Tim Mullen, 2002-07-08

Whether Microsoft's ambitious project is a security solution or a Trojan horse depends much on the company's intentions.

Expand all | Post comment

....only the best of intentions ... 2002-07-08
Anonymous (1 replies)

Arms race did exist 2002-07-08
Anonymous

The Peril of the Hardware... 2002-07-08
Nicholas Weaver

Hardware *is* absolutely necessary for any real security 2002-07-09
Dominique Brezinski (1 replies)

Hardware *is* absolutely necessary for any real security 2002-07-09
Anonymous

Palladium holds Promise, and Peril - but why? 2002-07-09
TL

The wrong problem addressed 2002-07-09
L0k1 (1 replies)

The wrong problem addressed 2002-07-10
Anonymous (1 replies)

The wrong problem addressed 2002-07-11
Anonymous

I think you are missing the point. I suspect the Hardware may be very good, and easier than software to produce verifyably secure functions. However the software interfaces to it will be the point of attack. It is the old smartcard problem that trojan code, or a clever attack on poor software may get the hardware to correctly verify/sign/encrypt/decrypt the wrong thing (from the person's point of view), without the person's knowledge.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/93/14125#14125

Palladium holds Promise, and Peril 2002-07-09
Anonymous

What about the others? 2002-07-09
MERLiiN

Palladium holds Promise, and Peril 2002-07-09
Halvar

Palladium holds Promise, and Peril 2002-07-09
SaltyNetGuru

Wrong problem indeed,... 2002-07-10
Anonymous

Palladium holds Promise, and Peril 2002-07-10
Anonymous

Palladium holds Promise, and Peril 2002-07-10
Hamster1

Yea, best interest 2002-07-18
Anonymous

Palladium holds Promise, and Peril 2002-07-21
Anonymous