April 16, 1993
INITIAL EFF ANALYSIS OF CLINTON PRIVACY AND SECURITY PROPOSAL
The Clinton Administration today made a major announcement on cryptography
policy which will effect the privacy and security of millions of Americans.
The first part of the plan is to begin a comprehensive inquiry into major
communications privacy issues such as export controls which have
effectively denied most people easy access to robust encryption, and law
enforcement issues posed by new technology.
However, EFF is very concerned that the Administration has already reached
a conclusion on one critical part of the inquiry, before any public comment
or discussion has been allowed. Apparently, the Administration is going to
use its leverage to get all telephone equipment vendors to adopt a voice
encryption standard developed by the National Security Agency. The
so-called "Clipper Chip" is an 80-bit, split key escrowed encryption scheme
which will be built into chips manufactured by a military contractor. Two
separate escrow agents would store users' keys, and be required to turn
them over law enforcement upon presentation of a valid warrant. The
encryption scheme used is to be classified, but the chips will be available
to any manufacturer for incorporation into its communications products.
This proposal raises a number of serious concerns .
First, the Administration has adopted a solution before conducting an
inquiry. The NSA-developed Clipper Chip may not be the most secure
product. Other vendors or developers may have better schemes. Furthermore,
we should not rely on the government as the sole source for the Clipper or
any other chips. Rather, independent chip manufacturers should be able to
produce chipsets based on open standards.
Second, an algorithm cannot be trusted unless it can be tested. Yet, the
Administration proposes to keep the chip algorithm classified. EFF
believes that any standard adopted ought to be public and open. The public
will only have confidence in the security of a standard that is open to
independent, expert scrutiny.
Third, while the use of the use of a split-key, dual escrowed system may
prove to be a reasonable balance between privacy and law enforcement needs,
the details of this scheme must be explored publicly before it is adopted.
What will give people confidence in the safety of their keys? Does
disclosure of keys to a third party waive an individual's Fifth Amendment
rights in subsequent criminal inquiries? These are but a few of the many
questions the Administrations proposal raised but fails to answer.
In sum, the Administration has shown great sensitivity to the importance of
these issues by planning a comprehensive inquiry into digital privacy and
security. However, the "Clipper Chip" solution ought to be considered as
part of the inquiry, and not be adopted before the discussion even begins.
DETAILS OF THE PROPOSAL:
ESCROW
The 80-bit key will be divided between two escrow agents, each of whom hold
40-bits of each key. The manufacturer of the communications device would
be required to register all keys with the two independent escrow agents. A
key is tied to the device, however, not the person using it.
Upon presentation of a valid court order, the two escrow agents would have
to turn the key parts over to law enforcement agents. According to the
Presidential Directive just issued, the Attorney General will be asked to
identify appropriate escrow agents. Some in the Administration have
suggested that one non-law enforcement federal agency (perhaps the Federal
Reserve), and one non-governmental organization could be chosen, but there
is no agreement on the identity of the agents yet.
CLASSIFIED ALGORITHM AND THE POSSIBILITY OF BACK DOORS
The Administration claims that there are no back doors -- means by which
the government or others could break the code without securing keys from
the escrow agents -- and that the President will be told there are no back
doors to this classified algorithm. In order to prove this, Administration
sources are interested in arranging for an all-star crypto cracker team to
come in, under a security arrangement, and examine the algorithm for trap
doors. The results of the investigation would then be made public.
The Clipper Chipset was designed and is being produced and a sole-source,
secret contract between the National Security Agency and two private firms:
VLSI and Mycotronx. NSA work on this plan has been underway for about
four years. The manufacturing contract was let 14 months ago.
GOVERNMENT AS MARKET DRIVER
In order to get a market moving, and to show that the government believes
in the security of this system, the feds will be the first big customers
for this product. Users will include the FBI, Secret Service, VP Al Gore,
and maybe even the President. At today's Commerce Department press
briefing, a number of people asked this question, though: why would any
private organization or individual adopt a classified standard that had no
independent guaranty of security or freedom from trap doors?
COMPREHENSIVE POLICY INQUIRY
The Administration has also announced that it is about to commence an
inquiry into all policy issues related to privacy protection, encryption,
and law enforcement. The items to be considered include: export controls
on encryption technology and the FBI's Digital Telephony Proposal. It
appears that the this inquiry will be conducted by the National Security
Council. Unfortunately, however, the Presidential Directive describing the
inquiry is classified. Some public involvement in the process has been
promised, but they terms have yet to be specified.
FROM MORE INFORMATION CONTACT:
Jerry Berman, Executive Director (jberman(a)eff.org)
Daniel J. Weitzner, Senior Staff Counsel (djw(a)eff.org)
Full text of the Press releases and Fact Sheets issued by the
Administration will be available on EFF's ftp site.
===================
PRESS RELEASE
FOR IMMEDIATE RELEASE: April 16, 1993
Electronic Frontier Foundation responds to Clinton Administration Digital
Privacy and Security proposals.
EFF Chairman Mitchell Kapor praises process but questions need for secret
standard.
The Clinton Administration today made a major announcement on privacy and
security for electronic communications including regular and cellular
phones. Mitchell Kapor, EFF Chairman of the Board, praised Administration
efforts to study comprehensive solutions to privacy problems, but
questioned the specific solution which the government is seeking to impose.
"The Administration is to be commended for launching a broad inquiry into
these critical problems," said Kapor, "but they should not attempt to
impose a solution before the process has begun."
"A system based on classified, secret technology will not and should not
gain the confidence of the American public," continued Kapor, commenting on
the proposed use of the NSA-developed "Clipper Chip." The Clipper chip is
to be sold to private corporations for incorporation in communications
products, but will be based on a classified coding system.
Kapor explained that "in the past, government-designed standards have
suffered under the suspicion that a hidden 'trap door' would allow
unauthorized governmental or private intrusion. The only way to avoid this
mistake is to publish open standards and subject them to expert,
independent scrutiny."
The Clipper proposal would also require users to deposit their code "keys"
with "trusted" escrow agents in order to allow law enforcement to conduct
court-authorized wiretaps.
Jerry Berman, EFF's Executive Director, said that "the escrow system is an
intriguing proposal, but the details of this scheme must be explored
publicly before it is adopted. What will give people confidence in the
safety of their keys? Does disclosure of keys to a third party waive an
individual's Fifth Amendment rights against self-incrimination? The
administration will need to answer questions such as these before it
proceeds with this, or any other, proposal."
Contact:
Jerry Berman, Executive Director
Daniel J. Weitzner, Senior Staff Counsel
tel: 202-544-3077 or 202-544-9237
eff(a)eff.org