1996-10-10 - Re: PGP implements Key Recovery today!

Header Data

From: Adam Back <aba@dcs.ex.ac.uk>
To: stewarts@ix.netcom.com
Message Hash: abb490b48c09f78addecdeea7ffc0e15fa71a989c6267b7ba6d1fa6fe74ed848
Message ID: <199610100740.IAA00270@server.test.net>
Reply To: <199610081636.MAA10922@attrh1.attrh.att.com>
UTC Datetime: 1996-10-10 14:10:35 UTC
Raw Date: Thu, 10 Oct 1996 07:10:35 -0700 (PDT)

Raw message

From: Adam Back <aba@dcs.ex.ac.uk>
Date: Thu, 10 Oct 1996 07:10:35 -0700 (PDT)
To: stewarts@ix.netcom.com
Subject: Re: PGP implements Key Recovery today!
In-Reply-To: <199610081636.MAA10922@attrh1.attrh.att.com>
Message-ID: <199610100740.IAA00270@server.test.net>
MIME-Version: 1.0
Content-Type: text/plain



Bill Stewart <stewarts@ix.netcom.com> writes:
> PGP has provided a key recovery option for several years.  You can
> either use the EncryptToSelf option, or use multiple recipients,

For a press worthy hack, it would be fun to extract an NSA RSA public
key from some GAKked software, and format it as a PGP key.

Then people can use key escrow if they wish (second recipient NSA).
And they can feed the NSA misinformation, stegoed data, double
encrypted PGP messages, anti GAK flames, and they might even feel
obliged to decrypt, and read it all :-)

I read some time ago about Lotus Notes which uses RSA and has GAK, was
this press release fodder, or does the product currently exist in it's
GAKked form?  Are the other GAKked products?

Is there anyone with a GAKked product, and the patience to reverse
engineer for the GAK key?

I guess if you do get an RSA key for the NSA, then you can choose an
email for them to put on the PGP keyid:

	NSA <dirnsa@nsa.gov>

(a real working email address would be better, if that one isn't
good), and get it signed by a timestamping service (persuade the owner
to sign in the form of a key certification).

Adam
--
#!/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj
$/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1
lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)





Thread