1998-11-23 - building a better zyklon-B (Re: KRA on ADK vs KR, NAI membership)

Header Data

From: Adam Back <aba@dcs.ex.ac.uk>
To: ddt@lsd.com
Message Hash: 73f6e8c826a9c0e74f2cdc4d4158f5d3d8651c83257d5b29509ed357cb15654e
Message ID: <199811232255.WAA17039@server.eternity.org>
Reply To: <v04103107b27b5d36a9fe@[204.179.136.12]>
UTC Datetime: 1998-11-23 23:44:21 UTC
Raw Date: Tue, 24 Nov 1998 07:44:21 +0800

Raw message

From: Adam Back <aba@dcs.ex.ac.uk>
Date: Tue, 24 Nov 1998 07:44:21 +0800
To: ddt@lsd.com
Subject: building a better zyklon-B (Re: KRA on ADK vs KR, NAI membership)
In-Reply-To: <v04103107b27b5d36a9fe@[204.179.136.12]>
Message-ID: <199811232255.WAA17039@server.eternity.org>
MIME-Version: 1.0
Content-Type: text/plain




Writing about PGP's key recovery mechanism (CMR (Commercial Message
Recovery) or ADK (Additional Decryption Key)), Dave Del Torto quotes
from a letter he sent to info@kra.org:

> I'm not aware of the KRA's public position on the recovery of
> plaintext using cryptographically sound and ethically responsible
> alternatives to the escrowing of keys in organizational situations,
> e.g. PGP's Additional Decryption Key (ADK) mechanism.

I don't see that ethics has any bearing on the difference between Key
Escrow, and PGP's CMR "message recovery" design.  They are both just
yet another protocol to allow third parties to decrypt encrypted
traffic.

Ethics enter into the discussion when one one starts to argue about
which third parties will be able to eavesdrop on the traffic.  This
issue is largely orthogonal to the general technique used.

Parties which people are most concerned about having access to data
are the spooks and governments via organisations such as NSA, GCHQ,
ECHELON etc.  In a commercial setting there is also some political
debate about whether the employee has any expectation of privacy.

One might also argue about whether it is ethical to design software
which helps or makes it easy for third parties to gain access to the
plaintext in general.

> What is the KRA's public position on PGP's ADK?

So one has to be clear of one's aims in asking KRA if they think PGP's
CMR or ADK is a nice technology for adding NSA backdoors to crypto.
Say, for example that they decided that CMR is neater than their CKRB
mechanism.  Now what?  NSA/KRA lobby companies to include a modified
CMR with the NSA's public key as a mandatory additional recipient?
And NAI gets `asked' by the NSA to burn an NSA public key into PGP 7.

Adam





Thread