Comment 20 for bug 54816

It's an interesting document. Unfortunately, I live in the US and we have export controls on things I believe akin to the "many to one" concept. I have no idea why this law enforcement related software would be banned for export. Perhaps I shall write an inquiry to my Congressmen. The paper is also a bit specific to Lenovo Thinkpad designs in some areas. If you like this paper enough, I think you might try running it past the Ubuntu Technical Council's agenda. If you do that, please let me know and I'll make sure and observe. They've done much work in Ubuntu, and if the Technical Council generally likes the idea, the authors should be contacted about inclusion etc. At the very least, the References section is handy.

As far as arguing what is secure and what isn't, when we talk about security, one must think of risk in both the probability and cost dimensions. The probability of a mismatch is low in the gym example. The cost is even lower. With Ubuntu in contrast, the cost of a compromised login isn't known. SSH and GPG keys could be compromised, leading to rootkit'd machines, infected packages. possibly botnets.