On Fri, Sep 01, 2006 at 12:05:16AM +1000, Tim Starling wrote:
Still the secret is there and it can be leaked, subpoenaed or just plain be sent out by a SNAFU.
Store the secret on flash memory embedded on a chip with a standalone processor, like a smart card. Have the processor do the hashes itself, don't provide any interface to obtain the secret. Put the processor in a box with a tamper switch and a small incendiary device, nothing but a serial line leading out. Easy.
Thank you, Tim.
I needed a laugh to start my morning. :-)
Cheers, -- jra