Well I can really understand those who still bear grudge. I live in Hungary (also once under communist control). I personaly never experienced any of the bad sides of communism, because I was too young then. But in my family a few were fired from work after saying something like "I wonder what life is like in west germany" or got their parents in prison, and themselves fired from college/university because they had a relative/or even neighbour who labeled as a spy by someone unknown.
And quite of few of them still lives today, and they hate the spies who made there best friends, neighbours disappear.
And they never knew who was it.
So I understand if they try to find out who ruined their lives.
btw In Hungary the so called spy lists are still sealed from the public by every government since the system change.
Key size is not an issue. Brute force attacks are only one type of attack against a cryptographic algorithm, it's called "chosen plain text attack" in crypto theory. But there are quite a few other attack methods, like cypher text only attack, or adaptive chosen plain text attack.
And furthermore we're talking about a cryptographic _protocol_, the algorithm is only one piece of it. (and it is possibly quite complex, and hey M$ is involved;))
So getting the secret key out of this system could be quite feasible, in every PC there will be a public key, encrypted text, plain text, so this offers endless possibilities to attacks:)
Digital Rights Management in user level is pointless, in OS level, well maybe.
Office11 is an application, without proper help from the OS it's already just waste of computing power:)
So if M$ wants strong security it must reimplement the 90% or more of the OS (from memory management, through process separation, low level I/O, and even the whole GUI (this includes buttons, labels, drag&drop, clipboard...) to have access management between the objects.
Ohh, and if they want 3rd parties to write apps for this new system, they have to provide APIs for accessing the contents of these files, and you can just write a program, that only decrypts the data using the API, and then sends it char by char through the network, and you already skipped the higher level protection of the Office routines (eg that won't let you print it)
It's a hell lot of work even for M$... I highly doubt that they would make this step.
Hey they even have to break API (not just binary) compatibility.
Slashdot Mirror
Well I can really understand those who still bear grudge. I live in Hungary (also once under communist control). I personaly never experienced any of the bad sides of communism, because I was too young then. But in my family a few were fired from work after saying something like "I wonder what life is like in west germany" or got their parents in prison, and themselves fired from college/university because they had a relative/or even neighbour who labeled as a spy by someone unknown.
And quite of few of them still lives today, and they hate the spies who made there best friends, neighbours disappear. And they never knew who was it.
So I understand if they try to find out who ruined their lives.
btw In Hungary the so called spy lists are still sealed from the public by every government since the system change.
Key size is not an issue. Brute force attacks are only one type of attack against a cryptographic algorithm, it's called "chosen plain text attack" in crypto theory. But there are quite a few other attack methods, like cypher text only attack, or adaptive chosen plain text attack.
;))
:)
And furthermore we're talking about a cryptographic _protocol_, the algorithm is only one piece of it. (and it is possibly quite complex, and hey M$ is involved
So getting the secret key out of this system could be quite feasible, in every PC there will be a public key, encrypted text, plain text, so this offers endless possibilities to attacks
Office11 is an application, without proper help from the OS it's already just waste of computing power :)
So if M$ wants strong security it must reimplement the 90% or more of the OS (from memory management, through process separation, low level I/O, and even the whole GUI (this includes buttons, labels, drag&drop, clipboard...) to have access management between the objects.
Ohh, and if they want 3rd parties to write apps for this new system, they have to provide APIs for accessing the contents of these files, and you can just write a program, that only decrypts the data using the API, and then sends it char by char through the network, and you already skipped the higher level protection of the Office routines (eg that won't let you print it)
It's a hell lot of work even for M$... I highly doubt that they would make this step.
Hey they even have to break API (not just binary) compatibility.