Similar in spirit?
Posted Oct 9, 2006 15:33 UTC (Mon) by kleptog
In reply to: Similar in spirit?
Parent article: Similar in spirit?
The device doesn't need the checksum. The device merely reports the checksum to the media distributor, which validates it against its own (self-maintained) list.
Well, that's obviously not going to work. Then I can simply set the code to return the expected checksum while actually running something else.
For a remote entity to verify you're actually running a particular binary is hard. The act of sending the checksum becomes the weak link, because some upstream router can just change it. So instead, the device has to fetch a list of valid checksums and have some TPM of its own to verify the checksum against the list. It's the verifying of an authentic checksum list that is the crucial part, and where of use of encryption keys comes from.
to post comments)