On Fri, Sep 01, 2006 at 12:05:16AM +1000, Tim Starling wrote:
Still the
secret is there and it can be leaked, subpoenaed or just plain be
sent out by a SNAFU.
Store the secret on flash memory embedded on a chip with a standalone
processor, like a smart card. Have the processor do the hashes itself, don't
provide any interface to obtain the secret. Put the processor in a box with
a tamper switch and a small incendiary device, nothing but a serial line
leading out. Easy.
Thank you, Tim.
I needed a laugh to start my morning. :-)
Cheers,
-- jra
--
Jay R. Ashworth jra(a)baylink.com
Designer Baylink RFC 2100
Ashworth & Associates The Things I Think '87 e24
St Petersburg FL USA
http://baylink.pitas.com +1 727 647 1274
The Internet: We paved paradise, and put up a snarking lot.