On Sun, 5 Mar 2000 [EMAIL PROTECTED] wrote:
> Perhaps this solves a little problem we've been playing with:
>
> We have an untrusted user that needs a key to unlock a file for
> processing. Is there anyway we can transmit a key to the program that
> processes the file and allow the program to unlock the file for
> processing such that the key cannot be determined by the user and thus be
> prevented from unlocking the file on his own?
I'd suspect what you'd need would be a one-time certificate system which
is based on presenting the user (not the resource) with the certificate.
The fact they're using a certificate and not the key to generate cert's
should be secure enough (especialy if the key consists of two parts that
are not known to any one party).
____________________________________________________________________
The future is downloading. Can you hear the impact?
O[rphan] D[rift>]
Cyber Positive
The Armadillo Group ,::////;::-. James Choate
Austin, Tx /:'///// ``::>/|/ [EMAIL PROTECTED]
www.ssz.com .', |||| `/( e\ 512-451-7087
-====~~mm-'`-```-mm --'-
--------------------------------------------------------------------
