1997-01-23 - Re: P.S. David Kahn’s editorial today

Header Data

From: Adam Shostack <adam@homeport.org>
To: cme@cybercash.com (Carl Ellison)
Message Hash: df48b827bbad9c26a7bd89a55d85ef1591bb29bf80cbcaacc87b8d3c90b809d0
Message ID: <199701231230.HAA05864@homeport.org>
Reply To: <199701230510.VAA04818@toad.com>
UTC Datetime: 1997-01-23 12:35:03 UTC
Raw Date: Thu, 23 Jan 1997 04:35:03 -0800 (PST)

Raw message

From: Adam Shostack <adam@homeport.org>
Date: Thu, 23 Jan 1997 04:35:03 -0800 (PST)
To: cme@cybercash.com (Carl Ellison)
Subject: Re: P.S. David Kahn's editorial today
In-Reply-To: <199701230510.VAA04818@toad.com>
Message-ID: <199701231230.HAA05864@homeport.org>
MIME-Version: 1.0
Content-Type: text/plain


Carl Ellison wrote:

| I just sent the following P.S. to newsday.com
| 			----------------------
| 
| If I use an AT&T Clipper-style cellular phone, as David suggested, and I
| call you on a normal wired phone, we can't encrypt the conversation and it
| is vulnerable to interception.  The protection works *only* if both parties
| have encrypting phones while interoperate.

	Its worth thinking about multiple layers of protection for a
datastream.  The end to end encryption issue is seperate from the
issue of mobile to base encryption (and mobile to base authentication,
for that matter.)  Compute power is getting cheap enough that doing
both seems roughly feasable to me.

	Multiple protective layers is also nice in an environment
where theres policy checking going on, ie, a firewall.  SSL only gets
plugged through a firewall because it can't be partially unwrapped.  I
can't proxy in any meaningful sense.

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume







Thread