Subject Re: [IB-Architect] Fw: Mischievous SYSDBA
Author Jan Mikkelsen
Charlie Caro <ccaro@...> wrote:
>Keeping these digital certificates in a database or file at the end user's
>would defeat the whole purpose of the exercise. It needs to be embedded in
>binary executables. Ownership and usage of databases is still under SQL
>Ownership and usage of software executables controlled by digital

Unless I've missed something fundamental, the executables are just files at
the end user's site, and the whole point of the exercise has been defeated.
What you have proposed is just security through obscurity.

Cryptography does not automatically provide security.

Jan Mikkelsen