4758 News www.cs.dartmouth.edu/~pkilab/4758.shtml
Last modified: 11/10/01 12:05:52 PM

In case you were wondering about the "4758 Cracked" rumors...

The 4758 is a physically and logically secure computer, that can house applications. To date, the security of this platform has not been compromised.

However, what those applications do is up to them---the 4758 gives developers an armored car, but developers still have to lock the doors.

The Cambridge team found a hole in the CCA application that many folks use, not in the underlying platform.

4758s in general are not threatened. Neither is the ability of the owner of any CCA-loaded card to load something else---and then verify that their untampered card really has a new application.

It seems to be the media that's confusing things. The Cambridge team itself is honest about what they've done; the only misstatements on their site that I saw were:

The Cambridge team also has some issues with how IBM responded to their discovery of CCA flaws. Having been outside of IBM for 16 months now (but personally knowing many of the people), I'm not really in a position to comment one way or the other on that.

--Sean (who worked on building and validating the 4758 platform, but not on CCA)


Back to home page Maintained by Sean Smith, sws@cs.dartmouth.edu