January 27, 2009

Digital signing

This is in response to the NY Times article about archiving and crypto hashes:

The article presents this as being “new? technology, when in fact it is very mature technology. Hashing is a wonderful tool for digital signing. It is in extensive use by many software distributors as a sure-fire way of verifying that a piece of software is not corrupt or tampered with. As a core technology, hashes and crypto are bulletproof. The trouble lies in the implementation.

Continue reading "Digital signing" »