Scott E. Preece (preece%mycroft@gswd-vms.ARPA)
Wed, 8 Apr 87 08:20:01 CST
From: "Alan R. Hill" <email@example.com>
> My years of experience in dealing with security indicates that data
> should be encrypted whenever practical. Relying on software or system
> adminstrators is folly.
Unless you're doing all your work on a trusted workstation, to which
only you have access, encryption isn't enough. The processor on which
the work is done has to encrypt and decrypt, meaning that the data
has to be floating around in plaintext form at some times. If your
software is ignoraably secure, then so is your transitory plaintext.
-- scott preece gould/csd - urbana uucp: ihnp4!uiucdcs!ccvaxa!preece arpa: arpa: preece@gswd-vms
This archive was generated by hypermail 2.0b3 on Thu Mar 09 2000 - 14:38:07 GMT