Oliver Neukum <oneukum@xxxxxxxx> writes: > I think we would need to use a form of public key cryptography > in the same manner used to verify authorship of emails. The host > would provide a nonce value that the device encrypts and returns. > The host would verify the signature. We're shipping the device containing the 'private key' all over the planet. How can you expect that to remain secure? -- -keith
Attachment:
signature.asc
Description: PGP signature
