[erlang-questions] Stand Alone Erlang or Equivalent

Jim McCoy jim.mccoy@REDACTED
Sat Sep 8 06:48:14 CEST 2007


What is probably needed here is a custom beam loader that can check
signatures on the beam files.  This variant would replace the bit that
loads a beam from disk with a function that first scans the beam to
generate a hash and then compares the hash to a manifest that has been
signed by the publisher's pubkey.  It would deter casual attacks and
any additional security you want to add would probably be best handled
in the beam loading mechanism anyway, so this would also be the
logical place to start if you wanted to later add beam encryption,
etc.

jim



More information about the erlang-questions mailing list