[EROS-Arch] Re: [E-Lang] Re: Interaction Design for End-User Security
Ka-Ping Yee
ping@lfw.org
Wed, 21 Mar 2001 19:59:53 -0800 (PST)
On Wed, 21 Mar 2001, Mark S. Miller wrote:
> There is *no way* to protect these users. The
> situation's actually much more severe than Robert's second sentence would
> indicate: locking the screen makes no difference. A machine that an
> attacker may have had physical access to must be assumed to be corrupt.
> Software security means nothing in the absence of restricted physical
> access. Special hardware (opaque boxes) can provide such restrictions
> within the box, but they have other problems.
Technically, you are correct. But then why are you developing E?
Why should anyone use EROS if the game is already lost?
(I believe the answer to these questions is also my answer to your
argument. I would like to see what your answer is, though.)
-- ?!ng
Happiness comes more from loving than being loved; and often when our
affection seems wounded it is is only our vanity bleeding. To love, and
to be hurt often, and to love again--this is the brave and happy life.
-- J. E. Buchrose