[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [GNU Crypto] beyond 1.1
From: |
Casey Marshall |
Subject: |
Re: [GNU Crypto] beyond 1.1 |
Date: |
27 Feb 2003 10:03:06 -0800 |
On Wed, 2003-02-26 at 00:19, Raif S. Naffah wrote:
> On Wednesday 26 February 2003 08:42, Casey Marshall wrote:
> >
> > Heck, it could be nothing more than an enhanced version of jar that
> > can encrypt entries. That would be easy to put together (though a
> > plain Jar with encrypted entries *may* provide too much information
> > as it is...).
>
> implementing it as a jar tool rather than a zip/unzip tool offers more
> possibilities! a[n encrypted] jar generated by such tool, would
> benefit from a special classloader akin to the one that verifies signed
> entries. what benefits do encrypted+signed entries offer v/s
> signed-only entries is a different matter :-)
>
I suppose it could be possible (to an extent) to only have code executed
in the case where the one *running* the program is trusted to do so.
Sounds like an application better suited for proprietary software,
however...
In the least it would be a way to bring strong encryption to the great
unwashed masses in a form they already understand (zip files).
--
Casey Marshall || address@hidden
signature.asc
Description: This is a digitally signed message part