http://blogs.msdn.com/dangriff/archive/2006/02/19/535120.aspxIt's funny - but I seem to remember back in my undergrad days when this classic paper was re-published in this form - http://www.acm.org/classics/sep95/ . Actually, I didn't know anything about the paper directly. Rather, around that time, I rememberen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/dangriff/archive/2006/02/19/535120.aspx#535192Mon, 20 Feb 2006 03:30:51 GMT91d46819-8472-40ad-a661-2c78acb4018c:535192TAGHow can you be sure that your EXE file you have just downloaded from <a rel="nofollow" target="_new" href="http://microsoft.com">http://microsoft.com</a> is not result of man-in-the-middle attack ? <br>I'm pretty much sure that you was downloading it using HTTP and has started installation by double-clicking on EXE. Digital signatures will not help much as long as all software will not be signed. There is currently no way to restrict user to run digitaly signed binaries only :-(http://blogs.msdn.com/dangriff/archive/2006/02/19/535120.aspx#535234Mon, 20 Feb 2006 06:10:12 GMT91d46819-8472-40ad-a661-2c78acb4018c:535234Kernel Mustard » Blog Archive » dangriff wonders about trusting the compilerPingBack from <a rel="nofollow" target="_new" href="http://kernelmustard.com/2006/02/19/dangriff-wonders-about-trusting-the-compiler/">http://kernelmustard.com/2006/02/19/dangriff-wonders-about-trusting-the-compiler/</a>