[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fwd: [guardian-dev] Piñata server intrusion bounty

To: [email protected]
Subject: Fwd: [guardian-dev] Piñata server intrusion bounty
From: [email protected] (stef)
Date: Wed, 11 Feb 2015 13:43:27 +0100
In-reply-to: <[email protected]>
References: <CAFTjcWBQqx=z-+u5fmi_w=x5ZySof_RnTBKKJuKMuG1yF4ZyOg@mail.gmail.com> <CAD2Ti2-tLx_pxyDZ0SJiQ_v0cbZ=6+pnvUSM7cByPrPoycKFfw@mail.gmail.com> <[email protected]>

On Wed, Feb 11, 2015 at 10:03:15AM +0000, Hannes Mehnert wrote:
> Also, it would be neat to think about a good way how the server can
> prove that it actually has the private key to the bounty - but I
> believe it is impossible (similar to that the server cannot prove it
> runs the software we claim it does).

couldn't remote attestation be used for this?

-- 
otr fp: https://www.ctrlc.hu/~stef/otr.txt

Follow-Ups:
- Fwd: [guardian-dev] Piñata server intrusion bounty
  - From: [email protected] (Hannes Mehnert)

References:
- Fwd: [guardian-dev] Piñata server intrusion bounty
  - From: [email protected] (grarpamp)
- Fwd: [guardian-dev] Piñata server intrusion bounty
  - From: [email protected] (Hannes Mehnert)

Prev by Date: Why Should[n't] I Work for the NSA?
Next by Date: Fwd: [guardian-dev] Piñata server intrusion bounty
Previous by thread: Fwd: [guardian-dev] Piñata server intrusion bounty
Next by thread: Fwd: [guardian-dev] Piñata server intrusion bounty
Index(es):
- Date
- Thread