Slashdot Mirror

← Back to Stories (view on slashdot.org)

Whit Diffie Comments On .NET security

Posted by timothy on from the lack-thereof dept.

An Anonymous Coward writes: "Whit Diffie and Susan Landu (both of Sun Microsystems) comment on why .NET is a bad idea and is in many ways in conflict with the US political struture and ideals." This is a good read, but of course Sun has their own plans and motivations in this field.

4 of 258 comments (clear)

  1. Theft is not the true liability by crumbz · · Score: 4, Insightful

    The fact that Microsoft software and consequently it's databases can be cracked is not the issue. The issue is that Microsoft is controlling the database itself. The whole is greater than the sum of its parts in this case. The sheer political will that can be wielded by Microsoft as enabled by a universal database is frightening.

    At what point do the privacy activists have to take up guns (real or virtual) to stop this shit?

  2. This isn't really a criticism of .NET. by megabeck42 · · Score: 4, Insightful

    They really aren't criticizing .NET languages, software, or architecture. Microsoft is positioning it's passport system to collect phenomenal amounts of information about people without their knowledge. Hence, the attack on privacy.

    --
    fnord.
  3. Read down to the bottom of the article by Pinball+Wizard · · Score: 5, Interesting
    Diffie is also the co-inventor of public-key cryptography.


    He's not "just a Sun employee" with a chip on his shoulder, he is a giant in his field. Give the guy the respect he deserves.

    --

    No, Thursday's out. How about never - is never good for you?

  4. I suspect Whitt has a different point by Zeinfeld · · Score: 4, Insightful
    Reading the article again I think it is quite likely that Whitt has quite a different target in mind from the one that people think.

    Although Whitt 'invented' Public Key Cryptography he is not a cryptographer in the sense many on the list seem to think. He is not interested much in algorithms, of the 20 odd times I have heard him speak in public or private I can only recall one occasion where we were discussing an algorithm and that was in the context of the Venona decrypts.

    Whitt's almost exclusive interest is public policy concerning privacy and security. While Whitt has probably cleared his talk through Sun's PR office he is quite obviously the instigator of the piece.

    The point he is making is much broader than .NET, as I am sure Whitt will explain later on. For the time being however it makes tactical sense to identify the problems with newly proposed schemes even though the real exposure comes from existing databases.

    What I believe Whitt is up to is re-interpreting the privacy concerns of the pre 9/11 world as security threats in the post 9/11 world.

    --
    Looking for an Information Security student project suggestion?
    Try http://dotcrimeManifesto.com/