Minister promises that Part III is coming

[Caspar Bowden]

(for some reason I didn't get this or my original post back from the
listserv, and had to go to the web archive of ukcrypto)

>Richard Clayton ukcrypto at chiark.greenend.org.uk=20
>>21.europe.corp.microsoft.com>, Caspar Bowden <casparb@microsoft.com>

>>I'm surprised more cases of child porn possession haven't tried
"hapless
>>victim of malware" defences.=20

>...
>-- and, AIUI, it will be ensured in the future
>that prosecution forensic witness will stress the lack of malware on
the
>forensically investigated hard disk and their failure, in a lifetime of
>experience, to have ever come across malware that vanished into a puff
>of smoke just moments before the front door was broken down...
..

>>If the target of some revenge grudge uses a
>>computer, then it would be quite feasible to make a piece of malware
>>that will get that and that person alone into a lot of trouble.=20

>Feasible mayhap, but to do in such a way that no traces remained and an
>entirely consistent story was left behind for forensic examination...
>this is a significant challenge, and I expect that many early attempts
>would fail...

I was assuming that only vectors which left no forensic trace would be
used. But what traces are left by a buffer overflow attack over the
network, which never touches the disk. There's no "story" that has to be
consistent.

>>What is safe to agree, I think, is that convicted child molesters
should
>>be on notice to prove the innocence of their data.=20

>It seems fashionable to view such people as sub-human, undeserving of a
>private life, civil liberties, and any possibility of rehabilitation.

That caricatures what I said - which is that in my view this is a
reasonable forfeit of liberty in the circumstances

--
Caspar Bowden