1998-02-04 - Re: BSAFE 4.0 to force GAK?!
Header Data
From: Adam Shostack <adam@homeport.org>
To: sorrin@syndata.com (steve)
Message Hash: dcac384d16c174478a76c6d2acd712e0e96f1169fb7a7e2ac46dcb18bd7d090e
Message ID: <199802040709.CAA03985@homeport.org>
Reply To: <34D75774.6036@syndata.com>
UTC Datetime: 1998-02-04 07:14:21 UTC
Raw Date: Wed, 4 Feb 1998 15:14:21 +0800
Raw message
From: Adam Shostack <adam@homeport.org>
Date: Wed, 4 Feb 1998 15:14:21 +0800
To: sorrin@syndata.com (steve)
Subject: Re: BSAFE 4.0 to force GAK?!
In-Reply-To: <34D75774.6036@syndata.com>
Message-ID: <199802040709.CAA03985@homeport.org>
MIME-Version: 1.0
Content-Type: text/plain
One would hope that this simply drives the market towords using
DSA/DH from toolkits like those available with support from Baltimore,
PGP, CryptoMathic, etc. (I maintain a list of free and commercial
crypto libraries at www.homeport.org/~adam/crypto. The list is
oriented at hackers and cypherpunks, and so gives far more detail on
the free libraries.)
Theres no reason to be using BSAFE if it enforces Uncle Sam's
ludicrous political requirements. Use a library from the free world.
Use algorithms that are not encumbered. Theres no longer any reason
not to.
Adam
steve wrote:
| FYI
|
| Jan. 26's Network World has an article on page 33 titled "RSA blasts
| (but also supports) Government encryption policy".
|
| The paragraph of note is the fourth paragraph which reads:"The next
| version of the RSA encryption toolkit, BSAFE 4.0, will force those
| building products with anthing over 56 bit strength encryption to use a
| key-recovery center for exportable products...."
|
| I haven't been able to confirm this with other sources yet but the
| glaring question is how will this be enforced and how will it affect
| domestic products that wish to use BSAFE 4.0 for their crypto. Further
| what ramifications does this hold for their S/Mail toolkit for S/MIME?
| and I haven't seen this discussed on the list yet.
| Steve O
| --
| A picture tells a thousand words.
| Stego
|
|
| -----BEGIN GEEK CODE BLOCK-----
| Version: 3.1
| GCS/IT/S d--() s+: a-- C++++(++)$ ULS+++@ P++@ L+(++)$ E- W+(+++)$
| N++$ !o K-? w++(+++)$ !O+>++ !M !V PS+(+++)@ PE(++)@ Y++$ PGP@ t+@
| 5++@ X++>$ R+++>$ tv+@ b+@ DI+++>$ D+++@>$ G@ e++@>++++ h r* y+
| ------END GEEK CODE BLOCK------
|
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
Thread
Return to February 1998
- Return to “Adam Shostack <adam@homeport.org>”
Return to “steve <sorrin@syndata.com>”
- 1998-02-03 (Wed, 4 Feb 1998 01:48:49 +0800) - BSAFE 4.0 to force GAK?! - steve <sorrin@syndata.com>
- 1998-02-04 (Wed, 4 Feb 1998 15:14:21 +0800) - Re: BSAFE 4.0 to force GAK?! - Adam Shostack <adam@homeport.org>