[sword-devel] Sapphire, module cipher
Daniel Glassey
dglassey at gmail.com
Thu Mar 2 12:19:25 MST 2006
On 02/03/06, Troy A. Griffitts <scribe at crosswire.org> wrote:
> DM
> Sure, if we decide to provide a mechanism in the engine to determine if
> a key is valid, we can easily do such, and SWMgr, when reading the
> module configuration files, can check and not even load the module if it
> doesn't have a correct key.
>
> I would like to hear opinions of switching from our current security:
>
> you don't know if you have it right until a human looks at the result
> and decides it's intelligable output.
>
> to a programmatic
>
> bool isKeyValid(...)
>
>
> You make an interesting point that someone might be able to construct a
> reasonably successful bool isKeyValid(...) themselves based upon a
> reasonable definition of the domain for the result.
>
> PS. If we decide to implent an isKeyValid(), I'll probably implement it
> quickly by saving an enciphered chunk of known data in DataPath.
Remember, the code is free so anyone is free to write an isKeyValid
themselves. So, if it is useful for the official library to have then
I don't think there is anything lost by having it.
Regards,
Daniel
More information about the sword-devel
mailing list