Subject: Re: Verifying a kernel.
To: Jonathan Stone <jonathan@dsg.stanford.edu>
From: Tonnerre <tonnerre@thundrix.ch>
List: tech-kern
Date: 07/20/2005 23:59:13
--AhhlLboLdkugWU4S
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline

Salut,

On Wed, Jul 20, 2005 at 02:55:34PM -0700, Jonathan Stone wrote:
> (OTOH, a real digital signature on kernels, or a signature of a SHA512
> hash, sounds really neat; but where can a bootloader get the material
> to verify a real signature?)

The point I was trying to make was:

CRC32 is perfect for this matter.

You could argue that it's not secure, which would be out of the scope
of the proposal, but then again, nor is MD5.

MD5 and friends are, in my opinion, overly complex for this matter.

				Tonnerre

--AhhlLboLdkugWU4S
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (NetBSD)

iD8DBQFC3skxXUVlAbfmNMIRAkSjAJ0YBIrmLMGVbZ3/BqYV6qHWDjvcLgCfd3bZ
E8RUx9upWGrAEv+sgR4dGUU=
=rDiB
-----END PGP SIGNATURE-----

--AhhlLboLdkugWU4S--