Oliver Neukum <oneu...@suse.com> writes: > I think we would need to use a form of public key cryptography > in the same manner used to verify authorship of emails. The host > would provide a nonce value that the device encrypts and returns. > The host would verify the signature.
We're shipping the device containing the 'private key' all over the planet. How can you expect that to remain secure? -- -keith
signature.asc
Description: PGP signature
