Re[6]: [Etherboot-developers] RFC: Safe booting concept
Brought to you by:
marty_connor,
stefanhajnoczi
Menu
▾
▴
Re[6]: [Etherboot-developers] RFC: Safe booting concept
|
From: Anselm M. H. <an...@ho...> - 2003-04-26 23:46:09
|
Hello Ken & Eric,
Sunday, April 27, 2003, 1:28:36 AM, Ken wrote:
>>> Which is why you want a conceptual layer in between to separate out how
>>> the key is fetched, it may not be with the image, e.g. it may be in a
>>> smart card. But that can come later.
>>
>>Though if it is a public key it is safe to store it with etherboot,
>>which is a reasonable assertion.
> Wasn't thinking that it's unsafe with Etherboot but that there may be
> uses where you want to separate the key and be able to give the client
> one of multiple identities.
Just in case one day USB support would become real, one could
implement not only SafeBoot but even the possibilty to require an USB
flash or thumb storage to contain the key... but that's future dreams.
Hey, who knows, perhaps etherboot could gain a palladium signature for
the Microshit/OutTel/BigBlue/${BADBOY} secure booting concept :-)
Off for today, good night,
Anselm mailto:an...@ho...
|
