l4-hurd
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Clarification (was: Re: Challenge: Find potential use cases for non-

From: Michal Suchanek
Subject: Re: Clarification (was: Re: Challenge: Find potential use cases for non-trivial confinement
Date: Fri, 19 May 2006 16:28:12 +0200 
On 5/19/06, Bas Wijnen <address@hidden> wrote:

On Fri, May 19, 2006 at 03:38:20PM +0200, Michal Suchanek wrote:
>
> Since the administrator should not be able to observe user sessions
> the DRM software can be installed in a new user session. Problem
> solved.

I was assuming that you were talking about DRM software which protected itself
against all users on the system.  If the administrator installs it, then at
least the administrator himself can have access to it (because they can't
check that he did indeed give up his ability to log in to the session.  He
must have had it at first, because he had to install the DRM software).


No. Either the software itself is the shell or the shell cannot be
replaced so it is known how to prevent futher access to it.
Authentication is user supplied so it is sufficient to break the
authentication so that nobody can authenticate.

Thanks

Michal
reply via email to
[Prev in Thread] Current Thread [Next in Thread]