ADSM-L

Re: ADSM security

1994-11-08 03:12:03
Subject: Re: ADSM security
From: Roy Jaques <rjaques AT BCOPS1.ESTEC.ESA DOT NL>
Date: Tue, 8 Nov 1994 09:12:03 +0100
> I agree with the problem of data being transmitted and (!) stored in
> a non-encrypted way.
> I keep pressing my point that the clients should not only be able
> to compress data but also to encrypt it (looks so easy to do - just
> a little DES filter).

The use of DES filters would require the production of two sets of executable
code to be released to the customer. One for North America the other for the
rest of the world. The US government still doesn't trust those of us outside
its influence.

> People might be reluctant to store their data in our robot, for fear
> that we may walk down and read it...
> I don't care if they forget their passwords, but I would love to offer
> the service also to those who habe certain security problems.
>
> Why can't the clients have the possiblity for user-supplied filters?

The problem then comes in identifying where any problem is occurring.
Introducing your own code gives the supplier, IBM, the ability to claim it
is not their problem. At the moment all the code is theirs and so are the
bugs.

>
> Or have we overlooked something?

Possibly but it escapes me at the moment.
>
> Greetings
> Gerhard
>

Roy Jaques
<Prev in Thread] Current Thread [Next in Thread>