From: Carl Ellison <cme@cybercash.com>
Date: Fri, 26 Sep 1997 06:24:26 +0800
To: trei@process.com
Subject: Re: Emphasizing a point by Donald Eastlake re key recovery
In-Reply-To: <199709251409.KAA00832@callandor.cybercash.com>
Message-ID: <3.0.3.32.19970925174308.03286100@cybercash.com>
MIME-Version: 1.0
Content-Type: text/plain



-----BEGIN PGP SIGNED MESSAGE-----

At 10:25 AM 9/25/97 -6, Peter Trei wrote:
>Well, I dunno. About 18 months ago, I was involved with the 
>negotiations over the exportability of an SSL equipped web
>server I had helped develop. The export model used 40 bit RC4
>and 512 bit keys. The initial version used 3DES to encrypt 
>stored private keys, and this was turned down. I modified it to
>use single DES, and it passed.
>
>Note that this was for secret key storage only.

This should be listed as yet another outrage of the current system -- 
perhaps reason to start another lawsuit.

 - Carl

-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv

iQCVAwUBNCra7FQXJENzYr45AQECaQP/aqrptzzWdwjJsseEtIKGckIg0mXLRAFk
APtO4O4hzeZJDVJ7QPKtJc6BqSU8uT5gs44rJR3SrUZ3g0D5RG4zyjue30Drhyor
bmqQKJXsbtIW/wk0uPXA3EyfRusjUr51yVjPdkwhRsh6ta5YIvAusTAonSjAoJrf
AL+F9+pFBPw=
=yC89
-----END PGP SIGNATURE-----


+------------------------------------------------------------------+
|Carl M. Ellison  cme@cybercash.com   http://www.clark.net/pub/cme |
|CyberCash, Inc.                      http://www.cybercash.com/    |
|207 Grindall Street   PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
|Baltimore MD 21230-4103  T:(410) 727-4288  F:(410)727-4293        |
+------------------------------------------------------------------+