mailing list archives
CSI 2008 Redux
From: "Dave Aitel" <dave.aitel () gmail com>
Date: Sat, 22 Nov 2008 08:03:28 -0500
For TQBF and similar food people who twitter about cooking but should be
twittering about chemistry like this: :>
"Why Fries Taste So Good"
CSI is a big conference - aimed not towards hackers but to IT managers.
Nevertheless it's interesting to gauge the speakers on their personalities
sometimes more than their tech. Steve Hanna , while ostensibly talking
about trusted computing seemed upset at the current US administration's
choices for the use of technology, which was an undercurrent in the
conference (held in DC). But not having a global PKI system (a.k.a.
Palladium, NGTGB, or Trusted Computing, the group Steve works on) is a good
way to make sure governments or large corporations don't abuse it, you know?
After that he went on to say that even with Trusted Computing, NAC still has
an important place for access control, which seemed to veer into confusing
all the OSI layers. If you can literally cryptographically attest to the
code running on a workstation, why do you need network access control?
And I don't understand why you need a trusted computing chip if you decide
to trust your hypervisor in the first place. Trusting the hypervisor instead
of a public key on a chip from Dell makes a lot more sense. It's more
configurable in a user-friendly way, and less configurable in a RIAA/Big
Brother friendly way.
Dailydave mailing list
Dailydave () lists immunitysec com
Re: CSI 2008 Redux Alexander Sotirov (Nov 23)
- CSI 2008 Redux Dave Aitel (Nov 22)