[2684] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: detecting GOTCHA chips

daemon@ATHENA.MIT.EDU (smb@research.att.com)
Tue Apr 20 09:40:49 1993

From: smb@research.att.com
To: bf4grjc@bell-atl.com
Cc: kerberos@Athena.MIT.EDU
Date: Tue, 20 Apr 93 09:25:53 EDT

	 > 
	 > The non-government team of cryptanalysts who will review Skipjack
	 > can and should generate a few hundred key/input/output triples,
	 > and feed them into a software emulation.  This list can be published
	,
	 > and use to validate installed Clipper chips.
	 > 
	 Unless of-course my chip has a PROM with the desired o/p, senses the 
	 (key,input) pair, and spits out the desired o/p. This is fairly 
	 easy to do. THe easier thing to do would probably have a 'test my
	 phone' 800 number that you can call, which has a trusted CLIPPER
	 chip, and which will verify that your chip is a real CLIPPER. 

I'm more concerned with the real chip not matching the specs...  ``Trusted''
Clipper indeed!

		--Steve Bellovin


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[2684] in Kerberos

Re: detecting GOTCHA chips

daemon@ATHENA.MIT.EDU (smb@research.att.com)Tue Apr 20 09:40:49 1993

daemon@ATHENA.MIT.EDU (smb@research.att.com)
Tue Apr 20 09:40:49 1993