1996-03-27 - Re: So, what crypto legislation (if any) is necessary? (Was List O’ , shame)

Header Data

From: frantz@netcom.com (Bill Frantz)
To: Simon Spero <ses@tipper.oit.unc.edu>
Message Hash: 9adbfbf5f39a753abe93ea160acb033ac345a7c6e61649123051ab5cf671b2ee
Message ID: <199603260757.XAA27985@netcom5.netcom.com>
Reply To: N/A
UTC Datetime: 1996-03-27 05:29:46 UTC
Raw Date: Wed, 27 Mar 1996 13:29:46 +0800

Raw message

From: frantz@netcom.com (Bill Frantz)
Date: Wed, 27 Mar 1996 13:29:46 +0800
To: Simon Spero <ses@tipper.oit.unc.edu>
Subject: Re: So, what crypto legislation (if any) is necessary? (Was List O' , shame)
Message-ID: <199603260757.XAA27985@netcom5.netcom.com>
MIME-Version: 1.0
Content-Type: text/plain


At  9:20 PM 3/25/96 -0800, Simon Spero wrote:
>On Mon, 25 Mar 1996, Bill Frantz wrote:
>
>> At  1:32 PM 3/25/96 -0500, Black Unicorn wrote:
>> to type them.  Since storage was limited, and old messages were purged from
>> the system it also had the effect that anti-trust discovery would have
>> nothing to discover.
>
>Hmmm - that's another issue; what about diffie hellman with ephemeral 
>keys? Once the transaction is complete, unless you keep a copy of the key, 
>even you can't decrypt that session. Would a law requiring you to keep a 
>copy of the keys be important. It would have the advantage of allowing 
>a sub-poena to be more restrictive than "just hand over your private 
>key", but it's a pretty heavy (undue?) burden. 

With PGP at least, it should be possible to hand over the IDEA key required
to decrypt each message in question without having to hand over your
private key.  Since the court would have your public key, they could verify
that the IDEA key you gave them was indeed the correct key.

Of course if they are using the subpoena to intimidate you, then they will
insist on the private key.

N.B. The IBM voice system mentioned above (and the attribution should be to
me, and not Black Unicorn) did not use any crypto.

Bill


------------------------------------------------------------------------
Bill Frantz       | The CDA means  | Periwinkle  --  Computer Consulting
(408)356-8506     | lost jobs and  | 16345 Englewood Ave.
frantz@netcom.com | dead teenagers | Los Gatos, CA 95032, USA







Thread