[Date Prev][Date Next][Thread Prev][Thread Next][Author Index][Date Index][Thread Index]

Comment

To: <xanadu!us>
Subject: Comment
From: Johan Strandberg <it!johan>
Date: Tue, 4 Jul 89 23:22:11 PDT

I noticed the following items in the Unassigned section of the schedule
review:

>    encryption stuff (postBeta, maybe post release)
>          study stanford key distribution system, licensing
>          find single key system we trust
>          find encryption hash we trust
>          find authentication we trust


Even if you find methods you trust, there is never a guarantee that
they will remain secure forever.

I would suggest having a mechanism in from day one, where there is some
kind of version number attached to each key, indicating under what
system it was created.  That way you can have a soft conversion if
(shudder) xanadu ever has to change encryption system.  Otherwise you
might end up with a situation where all backends and frontends have to
switch at the same time.

--johan

Prev by Date: Planning Meeting, 6/27
Next by Date: Planning Meeting, 7/4
Previous by thread: Planning Meeting, 6/27
Next by thread: Planning Meeting, 7/4
Index(es):