Re: Software license detector vans

William H. Geiger III (whgiii@invweb.net)
Wed, 18 Mar 98 09:36:28 -0500

• Next message: Per Kangru: "Re: Software license detector vans"
• Previous message: Ben Laurie: "Re: Software license detector vans"
• In reply to: William H. Geiger III: "Re: Software license detector vans"
• Next in thread: Martin G. Diehl: "Re: Software license detector vans"
• Reply: Martin G. Diehl: "Re: Software license detector vans"
• Reply: Dave Del Torto: "Re: Software license detector vans"

In <350FE4DD.6358DBAA@algroup.co.uk>, on 03/18/98
   at 03:14 PM, Ben Laurie <ben@algroup.co.uk> said:

>> I see this as quite scary. Imagine a program that radiated out private
>> info, CC #'s, private PGP keys with passphrases, bank account access
>> codes. the possibilities are endless and the worse part covert.

>Surely the point is that your system already does this? They've just
>found a way to control it more accurately (both to suppress and to choose
>what it radiates).

Actually I have a system that doesn't but that's another matter. Standard
Van Eck radiation detection has been of the form of receiving the *same*
image that is displayed on the users CTR. What is being discused here is a
way to covertly broadcast information without the user ever being aware!!

>If people want to plant software on you that gives
>away such information, surely there are easier ways than doing it such
>that you also have to park an expensive detector van outside!

For an attack on a single individule it would not be practicle. Where this
kind of attack would work would be for TIS to put this code inside of all
their GAKware so if one of the all too numerious spook agencies decided to
spy on someone the software would already be in place (any doubts that the
FBI,CIA,NSA,BATF have vans to spare??)

>> Hmmmmm where is the phone number for the local copper distributor?? Time
>> to start building some Faraday cages....

>Don't forget to snip that important information leak: your Internet
>connection...

I *never* do any sensitive work on a network computer. I have a shielded
box that runs on battery power only (extra bonus points if you know why it
isn't connected to the local power grid). It's a little old and slow but
then again no one does any real work on WinBlows so it's not a problem. :)

-- 
---------------------------------------------------------------
William H. Geiger III  http://users.invweb.net/~whgiii
Geiger Consulting    Cooking With Warp 4.0
Author of E-Secure - PGP Front End for MR/2 Ice
PGP & MR/2 the only way for secure e-mail.
OS/2 PGP 2.6.3a at: http://users.invweb.net/~whgiii/esecure.html                        
---------------------------------------------------------------
 
Tag-O-Matic: If at first you don't succeed, work for Microsoft.



application/pgp-signature attachment: stored

• Next message: Per Kangru: "Re: Software license detector vans"
• Previous message: Ben Laurie: "Re: Software license detector vans"
• In reply to: William H. Geiger III: "Re: Software license detector vans"
• Next in thread: Martin G. Diehl: "Re: Software license detector vans"
• Reply: Martin G. Diehl: "Re: Software license detector vans"
• Reply: Dave Del Torto: "Re: Software license detector vans"