From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <42DFDC6F.4010209@village.com> Date: Thu, 21 Jul 2005 13:33:35 -0400 From: Wes Kussmaul User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) MIME-Version: 1.0 To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> Subject: Re: [9fans] First-timer help References: <4878.1121962344@piper.nectar.cs.cmu.edu> In-Reply-To: <4878.1121962344@piper.nectar.cs.cmu.edu> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: quoted-printable Topicbox-Message-UUID: 6dba59e6-ead0-11e9-9d60-3106f5b1d025 Dave Eckhardt wrote: > If you can't trust the BIOS, you can't trust *anything* about > the machine. =20 I want a bios that is digitally signed by multiple properly-enrolled=20 professionally licensed individuals, with those licenses being signed by=20 city hall. The licenses should include: code developer code auditor building inspector None of these should be the usual worthless organizational code signing=20 signatures. (Right after the serpent said "try this fruit" he added, "by=20 the way, it's ok if the 'Arthur Andersen' signature means 'a bunch of=20 people collectively calling themselves Arthur Andersen.") The biometrics=20 of the signers should be on file, signed by the enrollment officer, who=20 is a Latin Notary. The bios should be able to do only one thing: hand over control to a=20 similarly code-signed hypervisor, and only if everything is kosher. > There are business-card-sized CD-R's, so if you > do trust the BIOS you can have a read-only bootable system in > your wallet at all times. =20 LNX-BBC is a good one: http://www.lnx-bbc.org/ However: a cd will last about a month in your wallet before it's no=20 good. Unless you have a rigid wallet. --=20 Wes Kussmaul CIO The Village Group 738 Main Street Waltham, MA 02451 781-647-7178 The information contained in this electronic message and any attachments=20 to this message are intended for the exclusive use of the addressee(s)=20 and may contain confidential or privileged information. If you are not=20 the intended recipient, please notify attorney Mort Hapless at Vulner,=20 Exposed & Wideopen LLP immediately at either (781) 647-7178, or at=20 ohoh@vulex.com, and destroy all copies of this message and any=20 attachments. No, really. Really. Listen, we mean it! Hey, if you don=92t=20 stop reading that confidential stuff about our client you=92re in big=20 trouble. OK, we=92re the ones in trouble but we=92ll find a way to go aft= er=20 you, or at least we think we may be able to. Look, we=92re begging you.=20 Just click the delete button and move on to a message that concerns you,=20 OK? Please?? We'll buy you lunch... Identity is the Foundation of Security=99. Let The Village Group=20 (village.com) ensure that only intended recipients receive your=20 confidential messages.