From: Bill Stewart <bill.stewart@pobox.com>
Date: Sat, 31 Jan 1998 17:26:38 +0800
To: John Young <cypherpunks@toad.com
Subject: Re: Why This List Is A Security Risk
In-Reply-To: <1.5.4.32.19980131020517.00720848@pop.pipeline.com>
Message-ID: <3.0.5.32.19980130224619.00855500@popd.ix.netcom.com>
MIME-Version: 1.0
Content-Type: text/plain



Eric Hughes was discussion out-of-band attacks on security systems,
such as providing the target's employees with opportunities for
"simultaneous employment" :-)   However, as the last part of
section (4) says, you've got to be careful of those suspicious
foreign cryptographers....

At 09:05 PM 1/30/98 -0500, John Young wrote:
>Setting policy on national security risk for the entire USG, 
>the DoD proclaims a trustworthy person does not engage in 
>the following:
>
>Sec. 147.14  Guideline L--Outside activities.
>
>    (a) The concern. Involvement in certain types of outside employment
>or activities is of security concern if it poses a conflict with an
>individual's security responsibilities and could create an increased risk of
>unauthorized disclosure of classified information.
>    (b) Conditions that could raise a security concern and may be
>disqualifying include any service, whether compensated, volunteer, or
>employment with: 
>    (1) A foreign country;
>    (2) Any foreign national;
>    (3) A representative of any foreign interest;
>    (4) Any foreign, domestic, or international organization or person
>engaged in analysis, discussion, or publication of material on
>intelligence, defense, foreign affairs, or protected technology.
>
>>From 32 CFR Part 147 published today.


				Thanks! 
					Bill
Bill Stewart, bill.stewart@pobox.com
PGP Fingerprint D454 E202 CBC8 40BF  3C85 B884 0ABE 4639