Excellent overview! Great work!
I'm no expert in encryption, so bear with me if I misunderstood some things.
According to the principle that only the hash gets stored on the PDA, wouldn't it be possble to give the hash and the ebook to somebody and they "inject" the hash in the settings of their ereader to read the book?
This way the other person can read the book, but can't get my CC number because they would have to recompute the hash, correct? The only risk would be that ereader.com could check the hash against their database to see who the original owner was.
aCC
PS: I'm not planning to give my ebooks to anybody that but find it an interesting topic.
|