> You can only tamperproof a machine you own. The application author is > not in that position. I ( vendor) can tamperproof a machine that I subsequently ship to you (user), and certify that I did so. This is the basis for extended trust of this kind. Legal basis may also exist, but I'm interested here in mechanisms that are honorable. Nobody says that the developer must use the log, either. Jonathan