[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [crypto] Avatar Protection?



Even with a custom client, I suppose there's always a chance 
of pulling things out of RAM.

How about a slightly different question:

Is there a way to sign it such that it wouldn't work if the
signature was removed, so there would be no question 
of who created it?

I suppose this is analogous to: Is there a way to sign
plaintext such that the plaintext can't be seen without the
signature attached?  I suppose not..

Is there a way to embed the signature as part of the 
code so it can't be removed?

    Ryan

---------- Previous Message ----------
To: Ryan.Russell
cc: cypherpunks
From: deviant @ pooh-corner.com (The Deviant) @ smtp
Date: 12/05/96 04:24:15 AM
Subject: Re: [crypto] Avatar Protection?

-----BEGIN PGP SIGNED MESSAGE-----

On 4 Dec 1996, Ryan Russell/SYBASE wrote:

> A graphic-designer friend of mine and I were talking
> about VRML avatars, and custom design work, and
> could he offer a service designing them etc...
> 
> His worry is that since everyone in the same virtual
> environment as his customer would see the designer 
> avatar, wouldn't they also be able to easily rip off
> his work?  (or his customer's property, take your pick.)
> 
> I wasn't sure...it seems to me that I read something vaguely
> along these lines for a cryptography protocol of some sort..
> The problem is this:  Is there a way for a user to "view" the client's
> avatar (and in this sense, the user usually has to receive a copy 
> of the code to render the avatar and render it on the local machine)
> but not save a copy?  Assume that a client with no save feature
> is not a viable option...too easy to work around.

Well, its concievable to write your own client, and make the code such
that it only works with that client...  I know, it kindof sucks, doesn't
it?

> 
> I suppose an analogy would be: Is there a way for a person to
> see the plaintext, but not record it?  I think that question really
> answers itself - no.  How about alternatives?  If the server
> of the environment only renders "views" (say, certain angles, or
> a bitmap) of the avatar, rather than sending the description file?
> 
> Any other thoughts?
> 
>     Ryan
> 

 --Deviant
   PGP KeyID = E820F015 Fingerprint = 3D6AAB628E3DFAA9 F7D35736ABC56D39

"First things first -- but not necessarily in that order"
                -- The Doctor, "Doctor Who"


-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQEVAwUBMqZOczCdEh3oIPAVAQHEAwf+IZ4KzMjcmb8t/HTMBvp83ChZ0VLS6xa3
+OwtpvkVGnuD4AJ+ayvDS10u4oAx78OillYDPolz6Gpnv0L+KDseo0sz7Yhgvepp
HwUw4UqMDBu9BMfkITFs6IS773EIgC8JmIf8/u6xEH/tvUjl44RQlgX+YE1Ybhvq
cGo3dF60fdiYzmoYvYESrMo9ldr97bImSjUE46bd4ZrtHjVTqDB75r9Uhb38SPWD
SdEi6rdC4sX1dY9zdJHIruhIM5BBpZcHX9Vo8cOSvzZY1s7rHXVQgb34rIcUcx7T
2GJTeJsTS2boi9O0urkKW8FIZtq82AnBk5WsavRtEIw0O5pC0jhR2g==
=aWWo
-----END PGP SIGNATURE-----