1993-08-26 - Re: Source Code NOT available for ViaCrypt PGP
Header Data
From: cme@ellisun.sw.stratus.com (Carl Ellison)
To: cypherpunks@toad.com
Message Hash: 99658f8d478b15e0c831a80371234bec587dbc5b3f70f1a8561f8bbca6780b1e
Message ID: <9308261032.ZM2500@ellisun.sw.stratus.com>
Reply To: <9308260309.AA19952@toad.com>
UTC Datetime: 1993-08-26 14:35:47 UTC
Raw Date: Thu, 26 Aug 93 07:35:47 PDT
Raw message
From: cme@ellisun.sw.stratus.com (Carl Ellison)
Date: Thu, 26 Aug 93 07:35:47 PDT
To: cypherpunks@toad.com
Subject: Re: Source Code NOT available for ViaCrypt PGP
In-Reply-To: <9308260309.AA19952@toad.com>
Message-ID: <9308261032.ZM2500@ellisun.sw.stratus.com>
MIME-Version: 1.0
Content-Type: text/plain
-----BEGIN PRIVACY-ENHANCED MESSAGE-----
Proc-Type: 2001,MIC-CLEAR
Originator-Name: cme@ellisun.sw.stratus.com
Originator-Key-Asymmetric:
MIGbMAoGBFUIAQECAgP+A4GMADCBiAKBgCl79/jl0DEVl1GQzOHlzjDmChDDxnWO
Acd7jShj2x1vclFh6vbHx9IJqkQdwNhNAWf8XnTrqBDN+VSBc1qdT6nSEAbNPxHD
XcvY2DudhuRaRBVLgUQ4scTK657m90Q+bTL5yIh2MaFipUw9BgbIXPTDlksSskWP
9oHjo+pCJC+lAgMBAAE=
MIC-Info: RSA-MD5,RSA,
DT+ZyepTl4TuHEa3jiojjmLnH8GYnfP2owhSC0rQO7sq6vsmgUifrl/usgJ4VckB
kxc7p7GK1kMeqPRG/1LLHcZDpOYvWEhbLSmV/xKpZ+nmj/wd0oBARuxd7nmRnxbS
DE4WJzaT3I3rhREjtY0fjB/WFZCglu5IpOgsHuGlY/0=
On Aug 25, 5:05pm, Timothy Newsham wrote:
> > But look on the bright side...
> >
> > This will blow David Sternlight out of the water!
>
> will it?
> the NSA seems to be pretty happy with the way PKP handles things.
> PKP has an arangement with viacrypt not to release source.
> It might be safe, but I wouldnt trust it given the way that
> the NSA pushes commerce to install backdoors in strong encryption.
As long as there is an approved version (ie., non-commercial, made by
the PGP cabal) -- interoperability will prevent any sneaking of back doors
into the message stream. The only place to worry is with key generation,
both IDEA and RSA.
I wouldn't be surprised if they're using the BSAFE object code or something
equivalent. In that case, key generation (random number routines, actually)
might be outside the package. Does anyone here know?
>
> btw, how did they get around PKP's rule about using the
> interface provided which uses DES ?
If they're using a general purpose, purchased library from RSA (not RSAREF)
then there's no built-in DES limitation.
Meanwhile, I'm looking forward to the commercial version, for my machine
here at work. Until then, I'm limited to RIPEM -- which few others on this
list speak.
- <<Disclaimer: All opinions expressed are my own, of course.>>
- Carl Ellison cme@sw.stratus.com
- Stratus Computer Inc. M3-2-BKW TEL: (508)460-2783
- 55 Fairbanks Boulevard ; Marlborough MA 01752-1298 FAX: (508)624-7488
-----BEGIN RIPEM PUBLIC KEY-----
User: cme@ellisun.sw.stratus.com
PublicKeyInfo:
MIGbMAoGBFUIAQECAgP+A4GMADCBiAKBgCl79/jl0DEVl1GQzOHlzjDmChDDxnWO
Acd7jShj2x1vclFh6vbHx9IJqkQdwNhNAWf8XnTrqBDN+VSBc1qdT6nSEAbNPxHD
XcvY2DudhuRaRBVLgUQ4scTK657m90Q+bTL5yIh2MaFipUw9BgbIXPTDlksSskWP
9oHjo+pCJC+lAgMBAAE=
MD5OfPublicKey: 39D9860686A9F075A9A83D49589C677A
-----END RIPEM PUBLIC KEY-----
>-- End of excerpt from Timothy Newsham
-----END PRIVACY-ENHANCED MESSAGE-----
Thread
Return to August 1993
- Return to ““Christian D. Odhner” <cdodhner@indirect.com>”
- Return to “cme@ellisun.sw.stratus.com (Carl Ellison)”
Return to “Timothy Newsham <newsham@wiliki.eng.hawaii.edu>”
- 1993-08-26 (Wed, 25 Aug 93 18:52:45 PDT) - Source Code NOT available for ViaCrypt PGP - “Christian D. Odhner” <cdodhner@indirect.com>
- 1993-08-26 (Wed, 25 Aug 93 20:12:18 PDT) - Re: Source Code NOT available for ViaCrypt PGP - Timothy Newsham <newsham@wiliki.eng.hawaii.edu>
- 1993-08-26 (Thu, 26 Aug 93 07:35:47 PDT) - Re: Source Code NOT available for ViaCrypt PGP - cme@ellisun.sw.stratus.com (Carl Ellison)
- 1993-08-26 (Wed, 25 Aug 93 20:12:18 PDT) - Re: Source Code NOT available for ViaCrypt PGP - Timothy Newsham <newsham@wiliki.eng.hawaii.edu>