1994-02-15 - CPSR Alert 3.04 (Clipper Update)

Header Data

From: Dave Banisar <Banisar@washofc.cpsr.org>
To: cpsr-announce@cpsr.org
Message Hash: c487fbb9d8a34620afaf2541f80e68a9afe705646b95ddfbb2f58a11a32a0d92
Message ID: <9402151503.AA32096@Hacker2.cpsr.digex.net>
Reply To: N/A
UTC Datetime: 1994-02-15 20:16:58 UTC
Raw Date: Tue, 15 Feb 94 12:16:58 PST

Raw message

From: Dave Banisar <Banisar@washofc.cpsr.org>
Date: Tue, 15 Feb 94 12:16:58 PST
To: cpsr-announce@cpsr.org
Subject: CPSR Alert 3.04 (Clipper Update)
Message-ID: <9402151503.AA32096@Hacker2.cpsr.digex.net>
MIME-Version: 1.0
Content-Type: text/plain


  ==============================================================
  
    @@@@  @@@@   @@@   @@@@        @    @     @@@@  @@@@ @@@@@@
    @     @  @  @      @  @       @ @   @     @     @  @    @
    @     @@@     @    @@@       @@@@@  @     @@@   @@@     @
    @     @        @   @  @      @   @  @     @     @  @    @
    @@@@  @     @@@    @   @     @   @  @@@@  @@@@  @   @   @
  
   =============================================================
   Volume  3.04                                February 15, 1994
   -------------------------------------------------------------
  
                           Published by
           Computer Professionals for Social Responsibility
                         Washington Office
                     (Alert@washofc.cpsr.org)
  
                SPECIAL EDITION --- CLIPPER UPDATE
     -------------------------------------------------------------
  
Contents
  
    [1] Clipper Petition Tops 10,000 Mark
    [2] Safire Slams Clipper
    [3] A Tough Question
    [4] Clipper Facts: Definition of "Tesserea"
    [5] Sign the Clipper Petition!
    [6] New Files at the CPSR Internet Library
     
     
-------------------------------------------------------------
  
[1] Clipper Petition Tops 10,000 Mark

The electronic petition begun by CPSR to oppose Clipper has generated
well over 10,000 responses in two weeks.  The daily signature totals
continue to increase, currently running at almost 2,000 per day!

The number of people who have opposed Clipper already exceeds the
current estimated government orders for Clipper chips.

Other upcoming milestones:

   12,000  Number of computer networks connected to the Internet
   15,000  Estimated number of total lawful wiretaps, 1968-1994
   70,000  Anticipated number of Clipper purchases this year
 
More details on the petition are re-printed below, just in case you
haven't already forwarded a copy to every person and mailing list you
know.

     -------------------------------------------------------------

[2] Safire Slams Clipper

For those of you who might have missed it, William Safire published a
very good essay on the Clipper proposal yesterday (February 14). We're
providing some excerpts here and recommend the piece in its entirety.
Let's hope Safire can do for Clipper what he did for Bobby Inman.


  Well-meaning law and intelligence officials, vainly seeking to 
  maintain their vanishing ability to eavesdrop, have come up with 
  a scheme that endangers the personal freedom of every American.

            *     *     *

  The "clipper chip" --- aptly named, as it clips the wings of
  individual liberty --- would encode, for Federal perusal whenever a 
  judge rubber-stamped a warrant, everything we say on a phone, 
  everything we write on a computer, every order we give to a shopping
  network or bank or 800 or 900 number, every electronic note we leave
  our spouses or dictate to our personal-digit-assistant genies.

  Add to that stack of intimate data the medical information derived
  from the national "health security card" Mr. Clinton proposes we all 
  carry. Combine it with the travel, shopping and credit data available 
  from all our plastic cards, along with psychological and student test 
  scores. Throw in the confidential tax returns, sealed divorce 
  proceedings, welfare records, field investigations for job 
  applications, raw files and C.I.A. dossiers available to the Feds, and 
  you have the individual citizen standing naked to the nosy bureaucrat.

            *     *     *

  The only people tap-able by American agents would be honest Americans
  --- or those crooked Americans dopey enough to buy American equipment 
  with the pre-compromised American code.  Subsequent laws to mandate the 
  F.B.I. bug in every transmitter would be as effective as today's laws 
  banning radar detectors.

            *     *     *

  Cash in your clipper chips, wiretappers:  you can't detect the crime
  wave of the future with those old earphones on.

     ---------------------------------------------------------------

[3] A Tough Question

During the briefing on February 4 at which the formal adoption of the
Escrowed Encryption Standard (aka Clipper) was announced, Mark Richards,
Deputy Assistant Attorney General for the Criminal Division,   was asked
the following hypothetical question:

  Suppose NSA goes to the key escrow agents and says, "We intercepted
  a Clipper-encrypted communication overseas.  No U.S. persons
  were parties, so the Foreign Intelligence Surveillance Act does
  not apply and we don't need a warrant."  How do the escrow
  agents determine whether or not to provide the keys?  Doesn't
  this create a huge loophole in the system?

Richards' response was that there would be "some" mechanism developed to
ensure that there would be no abuse of the key escrow system, but added
that any such procedures "might not be made public."  The response was
less than assuring.  The development of secret procedures for foreign
intelligence use of escrowed keys does nothing to assure the public of
the system's integrity.  It creates a very real possibility that the key
escrow system will be based upon nothing more than NSA's unilateral
representations concerning the circumstances of a particular
interception.

It was not at all apparent why these procedures couldn't be made public.
Like so much of the Clipper proposal, valid concerns are met with the
claim that "national security" precludes the disclosure of relevant
information.  This is why many of us believe this is a dangerous and
ill-advised way to design our civilian communications infrastructure.

     ---------------------------------------------------------------

[4] Clipper Facts: Definition of "Tesserea"

The Defense Department reportedly plans to employ the Clipper technology
in a device known as a "Tessera Card."  We checked the dictionary and
found the results to be kind of frightening:

  Terrerea n. Lat. (pl. tessereae).  Literally, "four-cornered".  Used
  to refer to four-legged tables, chairs, stools, etc.  Also, a single
  piece of mosaic tile; a single piece of a mosaic.  _Pol._: An identity
  chit or marker.  Tessereae were forced on conquered peoples and 
  domestic slaves by their Roman occupiers or owners.  Slaves or Gauls 
  who refused to accept a tesserea were branded or maimed as a form of 
  identification.

 
From Starr's History of the Classical World and the Oxford Unabridged.
(thanks to Clark Matthews)

     ----------------------------------------------------------------

[5] Sign the Clipper Petition!

                Electronic Petition to Oppose Clipper
                      *Please Distribute Widely*

On January 24, many of the nation's leading experts in cryptography and
computer security wrote President Clinton and asked him to withdraw the
Clipper proposal.
  
The public response to the letter has been extremely favorable,
including coverage in the New York Times and numerous computer and
security trade magazines.

Many people have expressed interest in adding their names to the letter.
In  response to these requests, CPSR is organizing an Internet petition
drive to oppose the Clipper proposal.  We will deliver the signed
petition to the White House, complete with the names of all the people
who oppose Clipper.

To sign on to the letter, send a message to:

     Clipper.petition@cpsr.org

with the message "I oppose Clipper" (no quotes)

You will receive a return message confirming your vote.

Please distribute this announcement so that others may also express
their opposition to the Clipper proposal.

     -------------------------------------------------------------
  
[6] New Files at the CPSR Internet Library

The following Clipper-related files are now available at the CPSR
Internet Library:

  NIST Announcement of FIPS-185 (Escrowed Encryption Standard)
  /cpsr/privacy/crypto/clipper/fips_185_clipper_feb_1994.txt

  "Big Brother Inside" Postscript file parody of Intel's logo.
  Perfect for stickers, posters. Designed by Matt Thomlinson.
  /cpsr/privacy/crypto/clipper/big_brother_inside_sticker.ps

  All February 4 White House releases on Clipper are available at
  /cpsr/privacy/crypto/clipper

  An analysis of US cryptography policy by Professor Lance Hoffman
  commissioned by NIST /cpsr/privacy/crypto/hoffman_crypto_policy_1994


The CPSR Internet Library is a free service available via
FTP/WAIS/Gopher/listserv from cpsr.org:/cpsr.  Materials from Privacy
International, the Taxpayers Assets Project and the Cypherpunks are also
archived.  For more information, contact ftp-admin@cpsr.org.

=======================================================================

To subscribe to the Alert, send the message:

"subscribe cpsr-announce <your name>" (without quotes or brackets) to
listserv@cpsr.org.  Back issues of the Alert are available at the CPSR
Internet Library FTP/WAIS/Gopher cpsr.org /cpsr/alert

Computer Professionals for Social Responsibility is a national,
non-partisan, public-interest organization dedicated to understanding
and directing the impact of computers on society.  Founded in 1981, CPSR
has 2000 members from all over the world and 22 chapters across the
country.  Our National Advisory Board includes a Nobel laureate and
three winners of the Turing Award, the highest honor in computer
science.  Membership is open to everyone.

For more information, please contact: cpsr@cpsr.org or visit the CPSR
discussion conferences on The Well (well.sf.ca.us) or Mindvox
(phantom.com).
  
 ------------------------ END CPSR Alert 3.04 -----------------------
  










Thread