[EROS-Arch] Re: [E-Lang] Re: Interaction Design for End-User Security

[Mark S. Miller]

At 06:08 AM Thursday 3/22/01, wojtek@ifirma.pl wrote:
>There is no software-only solution to this problem. Two factor
>authorization is required i.e. an USB token and password. There are tokens
>currenty under development, where your private key never leaves the token.
>This takes security two steps ahead.

Without taking hardware steps so you know what privileged code you're 
booting, I don't see how this solves the problem.  Please try walking 
through my scenario using your "solution".


        Cheers,
        --MarkM