Tom Weinstein <> (71 posts)

Be aware that many list participants used multiple email addresses over their time active on the list. As such this page may not contain all threads available.


Timing Cryptanalysis Attack

Re: 2047 bit keys in PGP

Re: Netscape, CAs, and Verisign

Re: “PGP-Scape”? (was Re: Our “New Order”)

X.509 certs that don’t guarantee identity

Netscape 2.01 fixes server vulnerabilities by breaking the client…

Bank information protected by 40-bit encryption….

Netscape Export + 128bits SSL (?)

Mindshare and Java

Re: Notes from the SF Physical Cypherpunks meeting

US versions of Netscape now available

Re: US versions of Netscape now available

Re: Netscape

Re: Netscape

Re: Netscape

Re: Netscape

Re: Netscape

Let’s Say “No!” to Single, World Versions of Software

The “Secure” version of Netscape for Linux is NOT

Re: Stop the presses – Anti-terrorism bill not that bad

Re: [Long] A history of Netscape/MSIE problems

Re: Clipper III on the table

WebTV a “munition”

Re: HP announcing some International Cryptography stuff on Monday

SSL Insecurity

Full Strength Stronghold 2.0 Released Worldwide


referers and W3 (fwd)

Re: McVeigh

Re: Impact of Netscape kernel hole

Re: Impact of Netscape kernel hole

Netscape Exploit

e$: Skins vs. Shirts

Kerrey bill introduced in Senate

Re: A better DES challenge

Re: Comparing Cryptographic Key Sizes

CNN - Encryption bill expected to pass House - June 23, 1997

More about Netscape Bug finder

McCain Open to Key Recovery Alternative by Rebecca Vesely 3:06pm 11.Jul.97.PDT Senator John McCain, sponsor of legislation that would create a domestic key recovery system for all encrypted commercial transactions and personal communications, said Friday that he is open to hearing alternatives to such a plan. “We are not wedded entirely to key recovery,” the Arizona Republican said in an interview. McCain, chairman of the Senate Commerce, Science, and Transportation Committee, and Senator Bob Kerrey (D-Nebraska) introduced the Secure Public Networks Act last month. Privacy advocates and much of the high-tech industry oppose domestic key recovery on grounds that it would violate civil rights and be impractical and expensive to build and manage. McCain said he met with Microsoft representatives recently to discuss a new technology being developed by the software giant that could be less intrusive and problematic than key recovery. The senator also said he plans to meet with Netscape officials next week to discuss yet another alternative. Officials from Netscape were not immediately available for comment. “I’m saying, OK, if you have another solution, I’d like to hear it,” McCain said, though he stressed that protecting national security remains his “first obligation.” The McCain-Kerrey bill includes provisions for setting up a voluntary domestic key recovery system, including incentives for those who participate. Critics say participation in the key-management infrastructure wouldn’t really be voluntary - it would be a prerequisite to conducting electronic commerce. Encryption, or data-scrambling technology, is widely viewed as the cornerstone to e-commerce because it conceals credit card numbers and other personal information traveling over networks. Key recovery, as outlined in the bill, would create a system of certificate authorities to whom users would give a copy of their data keys. Law enforcement could then access that copy of your key through a court order. McCain’s flexibility on the issue could influence the debate over how to protect national security while allowing a free market to flourish in the digital age. Just two days ago, at a Senate Judiciary Committee hearing on the bill, FBI director Louis Freeh testified on the need for mandatory domestic key recovery, and some senators on the committee, notably the chairman, Orrin Hatch (R-Utah), seemed to agree that some sort of domestic key recovery is needed to allow law enforcement to wiretap suspect digital communications and transactions.

Verisign gets export approval

Netscape browser crypto

[fwd][news] Netscape meets gov’t security standard

Netscape 5 will be GPL’ed

Questions for Magaziner?

What was the quid pro quo for Wassenaar countries?