Peter Purdie wrote:
No practical cryptography is immune from mathematical analysis, ask the
NSA. It's just that the analysis may take a few hundred years at the
present state of computing (but Moore's law applies).

Are you sure you mean cryptanalysis? What you say sounds more like
brute-forcing, and this is not what I mean.

What makes you think that all flight recorders of one type have the same
private key?

If they had a different private key, then VALI.exe would need to
include all public keys of all loggers sold. And you would have to
update the VALI.exe each time the vendor generates new keys for new
loggers he will sell, and each time somebody wants to have his logger
repaired. Then think about what happens when a pilot sends a logger
for repair, how will inserting a new key into the logger work? How
will the existing VALI.exe on the OLC server get to know about this?

While that would be technically possibly, and it would be possible to
pregenerate thousands of keys in advance, I do not think any logger
vendor has done this.

Do you think they did?

Max