May 1993 - cypherpunks-legacy

mykotronx
by ggoebel＠sun1.ruf.uni-freiburg.de 18 May '93

18 May '93

Hi, I was also the "anonymous" poster of the Mykotronx information :) ^^^^ It is genuine. Don't ask me how I did it. It's a secret. Besides, you probably wouldn't believe me anyways :( See ya, Garrett (thanks for the confidentiality) -- C. Garrett Goebel <ggoebel(a)sun1.ruf.uni-freiburg.de>

1 0

Third time's the charm
by Eric Hughes 18 May '93

18 May '93

OK. This time this should work. The previous file had some periods on lines by themselves; this was causing my sendmail overhere to think the end of transmission had arrived. Damn in-band signalling. Eric ----------------------------------------------------------------------------- Date: Mon, 17 May 93 14:04:46 PDT From: jim(a)RSA.COM (Jim Bidzos) Subject: [ROBACK(a)ECF.NCSL.NIST.GOV: Answers to Your Questions] FYI. NIST has responded to my questions. Feel free to distribute. -Jim Date: Mon, 17 May 1993 16:44:28 -0400 (EDT) From: ROBACK(a)ECF.NCSL.NIST.GOV Subject: Answers to Your Questions To: jim(a)RSA.COM X-Vmsmail-To: SMTP%"jim(a)rsa.com" To: Mr. Jim Bidzos, RSA Data Security, Inc. From: Ed Roback, NIST Mr. Ray Kammer asked me to forward to you our answers to the questions you raised in your e-mail of 4/27. We've inserted our answers in your original message. ------------------------------------------------------ From: SMTP%"jim(a)RSA.COM" 27-APR-1993 03:13:12.75 To: clipper(a)csrc.ncsl.nist.gov CC: Subj: Clipper questions Date: Tue, 27 Apr 93 00:11:50 PDT From: jim(a)RSA.COM (Jim Bidzos) Here are some questions about the Clipper program I would like to submit. Much has been said about Clipper and Capstone (the term Clipper will be used to describe both) recently. Essentially, Clipper is a government-sponsored tamper-resistant chip that employs a classified algorithm and a key escrow facility that allows law enforcement, with the cooperation of two other parties, to decipher Clipper-encrypted traffic. The stated purpose of the program is to offer telecommunications privacy to individuals, businesses, and government, while protecting the ability of law enforcement to conduct court-authorized wiretapping. The announcement said, among other things, that there is currently no plan to attempt to legislate Clipper as the only legal means to protect telecommunications. Many have speculated that Clipper, since it is only effective in achieving its stated objectives if everyone uses it, will be followed by legislative attempts to make it the only legal telecommunications protection allowed. This remains to be seen. >>>> NIST: There are no current plans to legislate the use of Clipper. Clipper will be a government standard, which can be - and likely will be - used voluntarily by the private sector. The option for legislation may be examined during the policy review ordered by the President. The proposal, taken at face value, still raises a number of serious questions. What is the smallest number of people who are in a position to compromise the security of the system? This would include people employed at a number of places such as Mikotronyx, VSLI, NSA, FBI, and at the trustee facilities. Is there an available study on the cost and security risks of the escrow process? >>>> NIST: It will not be possible for anyone from Mykotronx, VLSI, NIST, NSA, FBI (or any other non-escrow holder) to compromise the system. Under current plans, it would be necessary for three persons, one from each of the escrow trustees and one who knows the serial number of the Clipper Chip which is the subject of the court authorized electronic intercept by the outside law enforcement agency, to conspire in order to compromise escrowed keys. To prevent this, it is envisioned that every time a law enforcement agency is provided access to the escrowed keys there will be a record of same referencing the specific lawful intercept authorization (court order). Audits will be performed to assure strict compliance. This duplicates the protection afforded nuclear release codes. If additional escrow agents are added, one additional person from each would be required to compromise the system. NSA's analysis on the security risks of the escrow system is not available for public dissemination. How were the vendors participating in the program chosen? Was the process open? >>>> NIST: The services of the current chip vendors were obtained in accordance with U.S. Government rules for sole source procurement, based on unique capabilities they presented. Criteria for selecting additional sources will be forthcoming over the next few months. AT&T worked with the government on a voluntary basis to use the "Clipper Chip" in their Telephone Security Device. Any vendors of equipment who would like to use the chips in their equipment may do so, provided they meet proper government security requirements. A significant percentage of US companies are or have been the subject of an investigation by the FBI, IRS, SEC, EPA, FTC, and other government agencies. Since records are routinely subpoenaed, shouldn't these companies now assume that all their communications are likely compromised if they find themselves the subject of an investigation by a government agency? If not, why not? >>>> NIST: No. First of all, there is strict and limited use of subpoenaed material under the Federal Rules of Criminal Procedure and sanctions for violation. There has been no evidence to date of Governmental abuse of subpoenaed material, be it encrypted or not. Beyond this, other Federal criminal and civil statutes protect and restrict the disclosure of proprietary business information, trade secrets, etc. Finally, of all the Federal agencies cited, only the FBI has statutory authority to conduct authorized electronic surveillance. Electronic surveillance is conducted by the FBI only after a Federal judge agrees that there is probable cause indicating that a specific individual or individuals are using communications in furtherance of serious criminal activity and issues a court order to the FBI authorizing the interception of the communications. What companies or individuals in industry were consulted (as stated in the announcement) on this program prior to its announcement? (This question seeks to identify those who may have been involved at the policy level; certainly ATT, Mikotronyx and VLSI are part of industry, and surely they were involved in some way.) >>>> NIST: To the best of our knowledge: AT&T, Mykotronx, VLSI, and Motorola. Other firms were briefed on the project, but not "consulted," per se. Is there a study available that estimates the cost to the US government of the Clipper program? >>>> NIST: No studies have been conducted on a government-wide basis to estimate the costs of telecommunications security technologies. The needs for such protection are changing all the time. There are a number of companies that employ non-escrowed cryptography in their products today. These products range from secure voice, data, and fax to secure email, electronic forms, and software distribution, to name but a few. With over a million such products in use today, what does the Clipper program envision for the future of these products and the many corporations and individuals that have invested in and use them? Will the investment made by the vendors in encryption-enhanced products be protected? If so, how? Is it envisioned that they will add escrow features to their products or be asked to employ Clipper? >>>> NIST: Again, the Clipper Chip is a government standard which can be used voluntarily by those in the private sector. We also point out that the President's directive on "Public Encryption Management" stated: "In making this decision, I do not intend to prevent the private sector from developing, or the government from approving, other microcircuits or algorithms that are equally effective in assuring both privacy and a secure key-escrow system." You will have to consult directly with private firms as to whether they will add escrow features to their products. Since Clipper, as currently defined, cannot be implemented in software, what options are available to those who can benefit from cryptography in software? Was a study of the impact on these vendors or of the potential cost to the software industry conducted? (Much of the use of cryptography by software companies, particularly those in the entertainment industry, is for the protection of their intellectual property.) >>>> NIST: You are correct that, currently, Clipper Chip functionality can only be implemented in hardware. We are not aware of a solution to allow lawfully authorized government access when the key escrow features and encryption algorithm are implemented in software. We would welcome the participation of the software industry in a cooperative effort to meet this technical challenge. Existing software encryption use can, of course, continue. Banking and finance (as well as general commerce) are truly global today. Most European financial institutions use technology described in standards such as ISO 9796. Many innovative new financial products and services will employ the reversible cryptography described in these standards. Clipper does not comply with these standards. Will US financial institutions be able to export Clipper? If so, will their overseas customers find Clipper acceptable? Was a study of the potential impact of Clipper on US competitiveness conducted? If so, is it available? If not, why not? >>>> NIST: Consistent with current export regulations applied to the export of the DES, we expect U.S. financial institutions will be able to export the Clipper Chip on a case by case basis for their use. It is probably too early to ascertain how desirable their overseas customers will find the Clipper Chip. No formal study of the impact of the Clipper Chip has been conducted since it was, until recently, a classified technology; however, we are well aware of the threats from economic espionage from foreign firms and governments and we are making the Clipper Chip available to provide excellent protection against these threats. As noted below, we would be interested in such input from potential users and others affected by the announcement. Use of other encryption techniques and standards, including ISO 9796 and the ISO 8730 series, by non-U.S. Government entities (such as European financial institutions) is expected to continue. I realize they are probably still trying to assess the impact of Clipper, but it would be interesting to hear from some major US financial institutions on this issue. >>>> NIST: We too would be interested in hearing any reaction from these institutions, particularly if such input can be received by the end of May, to be used in the Presidentially-directed review of government cryptographic policy. Did the administration ask these questions (and get acceptable answers) before supporting this program? If so, can they share the answers with us? If not, can we seek answers before the program is launched? >>>> NIST: These and many, many others were discussed during the development of the Clipper Chip key escrow technology and the decisions-making process. The decisions reflect those discussions and offer a balance among the various needs of corporations and citizens for improved security and privacy and of the law enforcement community for continued legal access to the communications of criminals.

2 1

Request for requests
by poier＠sfu.ca 18 May '93

18 May '93

Hi. Please email me (or post directly) as to any companies in the Vancouver/Seattle area doing encryption research for any governmental agency. I wish to keep tabs on such companies, and I'd be more than willing to share any findings. Feyd Eli -- -----====> Skye Merlin Poier <====----- Undergrad in CMPT/MATH (Virtual Reality) |||| |||| email: poier(a)sfu.ca o-OO <--> OO-o THINK PGP Public Key available on request \== ==/

1 0

mykotronx
by trimm＠netcom.com 18 May '93

18 May '93

Howdy. I was the "anonymous" poster of the Mykotronx information. It is genuine, for samples I can fax you parts of it, or snail mail or whatever. Or, simply call me: Gary Watson Engineer Trimm Industries (800) 423-2024 trimm(a)netcom.com I am in the process of piecing together the Selectric ribbon that the executive secretary of Mykotronx carelessly threw into the routine office trash. I'm cutting into 8" strips and taping it to white paper, but this is a tedious process, and it may be after my Atlanta Comdex trip before I post on it again. See ya, GW (thanks for the confidentiality) --

2 1

No Subject
by kelly＠pleiku.netcom.com 18 May '93

18 May '93

>From kelly Mon May 03 06:24:09 0700 1993 remote from pleiku To: toad.com!cypherpunks Subject: Date: Mon, 03 May 1993 06:24:09 -0700 From: "Stop the Big Brother CHip" <pleiku!kelly> Received: from pleiku by pleiku.netcom.com; Mon, 3 May 1993 06:24 PDT Content-Type: text Content-Length: 3949 I thought this my be interesting to those designing encrypted phones... cheers kelly ------- Forwarded Message Return-Path: <kelly> Received: by netcom.netcom.com (5.65/SMI-4.1/Netcom) id AA21283; Sun, 2 May 93 10:25:08 -0700 Date: Sun, 2 May 93 10:25:08 -0700 From: kelly (Kelly Goen) Message-Id: <9305021725.AA21283(a)netcom.netcom.com> To: junem, kelly, phil Subject: quaderno Speech capabilities Status: R Path: netcom.com!csus.edu!news.ucdavis.edu!agate!howland.reston.ans.net!usc!cs.utexas.edu!uunet!psgrain!ee.und.ac.za!csir.co.za!nuustak!duck From: duck(a)nuustak.csir.co.za (Paul Ducklin) Newsgroups: comp.sys.palmtops Subject: Re: Quaderno speech hardware Date: 22 Apr 1993 10:01:03 +0200 Organization: CSIR, South AFrica Lines: 54 Message-ID: <duck.735462694@nuustak> References: <1993Apr20.213938.26184(a)Princeton.EDU> NNTP-Posting-Host: nuustak.csir.co.za X-Disclaimer: None of the opions expressed herein are the official X-Disclaimer: opinions of the CSIR or any of its subsidiaries. X-Disclaimer: ** So don't freak out at _us_ about anything ** Thus spake mg(a)cs.princeton.edu (Michael Golan): [stuff about the Quaderno's sound digitising capability] >Can the mic/speaker be accessed from software to produce 8-12bit digital >sound? If so, and assuming a 9600bps modem is available (is it?), the >machine is an excellent candidate for a truly secure phone The speech DSP hardware is quite fancy -- you can download your own vocoder program, if you have the right DSP code development tools, to implement things like DTMF-recognition. Or you can select one of the built-in vocoders, which provide various levels of compression. The speech program which comes with the Quaderno is just a TSR which hooks to the speech hardware, and which writes digitised sound to a file. No reason why you couldn't write your own speech program which grabs digitsed blocks from the DSP [you can give the BIOS the address of a routine to be called when the DSP is ready to deliver] and stuffs them wheresoever you desire -- such as into the serial port. On the other end, you have a DSP "play" program -- once again, you can give the system the address of a routine to be called whenever the DSP is ready to analogise [?] the next block of bits. I can't remember, though, what bit-rates are available with the built-in vocoders. If people are interested, I'll look it up when I get home this evening [or Don Herrick -- are you there?]. Ah yes -- just remembered that one of the vocoders churns out 13Kbit/sec with *very* acceptable quality [for voice -- music sounds like a heap o' crap when pushed through this particular vocoder]. So this could be stuffed into a regular V.32bis modem and transmitted fast enough to give real-time speech. With its 16MHz V30 CPU, the Quaderno should be more than ready for the task of real-time encryption in software. If my memory serves me, there's also a built-in vocoder which compresses to 2400bits/sec [!] -- the speech program which ships with the Quaderno, however, doesn't offer this as an option, so I've yet to try it. Probably pretty damn bad, though. Another thought -- the Quaderno's DSP will record and play at the same time, and V.32bis is full-duplex. So full-duplex conversations on the above scheme are quite possible. Could be fun -- how to turn a good 3KHz analogue voice line into a fair 13Kbit digital voice line! And, as mentioned recently in alt.security, you can also use the speech digitiser for acquiring data with a high degree of randomness, which you then encrypt with a part of itself to produce data which is "truly" random. Paul /\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\ \ Paul Ducklin duck(a)nuustak.csir.co.za / / CSIR Computer Virus Lab + Box 395 + Pretoria + 0001 S Africa \ \/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/ ------- End of Forwarded Message

1 0

No Subject
by kelly＠pleiku.netcom.com 18 May '93

18 May '93

>From kelly Mon May 03 06:15:02 0700 1993 remote from pleiku To: netcomsv.netcom.com!biocad.com!valerie cc: toad.com!cypherpunks, kelly Subject: Re: [comp.society.privacy fwd] Wiretaps without warrants In-reply-to: Your message of "Sun, 02 May 1993 18:15:00 PDT." <9305030115.AA24068(a)valis.biocad.com> Priority: urgent Date: Mon, 03 May 1993 06:15:02 -0700 From: "Stop the Big Brother CHip" <pleiku!kelly> Received: from pleiku by pleiku.netcom.com; Mon, 3 May 1993 06:15 PDT Content-Type: text Content-Length: 1107 Well I read it also and I couldnt believe my eyes... we have to get working rather than talking it seems... cheers kelly -- Parts of this .sig borrowed with permission from T.C.May. Perhaps it will indeed get me busted also. .......................................................................... Kelly Goen | Crypto Anarchy: encryption, digital money, kelly(a)netcom.com | anonymous networks, digital pseudonyms, zero Intelligence Systems | knowledge, reputations, information markets, Specialists Inc. | black markets, face banks, data havens, dark | tech, covert channels, shared secrets, | alt.whistleblowers, collapse of governments. Technical Monkeywrench | Public Key: PGP 2.2. | .......................................................................... PGP 2.2 Key available from PGP Keyservers on the Internet. pub 1024/1BA573 1992/09/09 kelly <kelly(a)netcom.com> Key fingerprint = EF 7A 38 99 22 84 E3 3B 90 2A DB 80 DC 65 DA 31 STOP THE WIRETAP CHIP(Clipper Chip)!!

1 0

I'M GOING CRAZY! FWEE!
by L. Detweiler 18 May '93

18 May '93

RECIPE FOR INSANITY =================== I'm extremely FRUSTRATED and DEJECTED on the progress the `whistleblowing newsgroup' has undergone as a cypherpunk pet-project: pathetically negligible and STYMIED, from my point of view. It has been many weeks since a rowdy, visionary, and consistently irritating cypherpunk first proposed it and immediate ringing endorsements came from eminent and venerable members of the list, e.g. T.C. May. It has generated quite a bit of traffic and ideas on the list. In spirit and intent is probably as central to the cypherpunk cause, as, say, PGP. WHERE'S THE GROUP? ================== I swear I am going to go INSANE waiting for some patriotic cyberpunk with a smidgeon of skill, courage, impatience, knowledge, and access to send out a NEW GROUP command for alt.whistleblower! Did I miss it? Where the heck is it? Please, I IMPLORE SOMEONE to PUT ME OUT OF MY MISERY! FIRE NOW! Damn, we have the stench of alt.fan.dick-depew wafting as easily as most mortal people create directories! PLEASE, I swear whoever gets alt.whistleblower gets to be in my personal historical all-time CYPHERPUNK HALL OF FAME and have my everlasting gratitude! Never before in the history of Usenet has something so trivial thwarted so many for so long! Sheesh, I thought it would be SIMPLE for someone to effect SOMETHING to happen in this area. I thought I wouldn't have to slave away entirely personally in going through the RFD and voting process, if even that was necessary! For once I thought this would be a project that every cypherpunk could bite off a piece somewhere, and that some COLLECTIVE MOMENTUM could be established! I thought this could happen faster than the speed of electricity. Instead it is happening slower than the SPEED OF BUREACRACY. Am I starting to sound enough like a CRACKPOT YET? well I really hope so. <tremble> I think I am going to break down and cry. Please, someone, have some humanity in you, and PULL THE TRIGGER. Are we waiting for a triplicate directive from Clinton, or the NSA, or what?! Do we have to make sure every vacillating cypherpunk likes the idea or every last senator is personally prepared with their Official WhistleBlower Kit and Decoder Ring? Who cares what anyone thinks! JUST DO IT! BOILING A TOAD? =============== Gad, it is such a g*dawful tragedy this simple take-out-the-trash chore has not been done yet. Look, I don't know about the authenticity of the recent Mycotronx postings, they make me SHUDDER! They are PERFECT AMMUNITION (whether true or not) for getting some MAJOR HEAT on the maintainers of this fragile mailing list! Does anyone have any idea how paranoid and POWERFUL the NSA is? Do you think that they just shrug their shoulders and say `oh well' when confidential information sneaks out? Do you know what kind of unpleasantness a wounded bureacrat can summon? Multiply that uncountably many times and you have a tiny facet of the decimating wrath of a betrayed horde of spies sanctioned by a vast government! Gad, this could all have been ENTIRELY AVOIDED if they were posted to a newsgroup! As I've pointed out, the critical *resilient* aspect there is that a newsgroup is *distributed* -- post from anywhere, spreads everywhere like a virus, how can a sinister federal agency clamp down on a cloud? It can't! On the other hand, if anyone decided to clamp down on toad.com, after a certain amount -- certainly a great deal but definitely a lot less than that required to shutdown Usenet -- it would CROAK! PARANOID DELUSIONS ================== Yes, I really am going insane. Clark Reynard <clark(a)metal.psu.edu> posted a few weeks ago he was starting the RFD for soc.whistleblowers. In my silly naivete I thought enough cypherpunks would drop by to make it a landslide, and that I'd mosey on over after hearing about all the excitement. Review the debate, balance the points, post something fiery and visionary and inspiring, sit back and watch the fireworks. Finally, I thought, someone who knew what they were doing could get this silly thing HAPPENING. Someone could be a LEADER and take RESPONSIBILITY. Someone could give some DIRECTION to the pervasive cypherpunk malaise, stalemate, and bickering. Someone who was forging AHEAD irrespective of counterproductive and sabotaging griping. What the heck happened? Did anything happen? This is not only dead without a bang, it is dead without a whimper! Mr. Reynard posts on Tue May 4: >Based on the responses of a few cypherpunk members, >I have decided not to post a second RFD for soc.whistleblowers >unless I receive a significant amount of email requesting >that I do so. Nor will I post a CFV. My sanity is teetering precipitously. Who were these cypherpunk `members'? Mr. Reynard refuses to identify `them' to me in email. He says that someone has asked him NOT to personally start the whistleblower group! and that this person deserves his trust because of his reputed contributions to the cypherpunk cause! Gee, I asked, who could this be that would ask to HALT PROGRESS for some vague, nebulous, unspecified reason that even Mr. Reynard was not aware of? Look, I would have gladly saved all this bilge for private email, but I DON'T KNOW WHO TO TALK TO! Supposedly this person, for some unfathomable reason, specifically told Mr. Reynard NOT to reveal his identity! I will not quote email, but Mr. Reynard kindly sympathizes with my frenzy, but still refuses to tell me anything informative! So ever since May 4 and trading several barren and excruciatingly exasperating missives with Mr. Reynard, I am BOILING OVER! This mystery person is supposedly going to post something on the whistleblower project, acc. to Mr. Reynard, Real Soon Now to the list that will absolutely dazzle everyone with its magnificent splendor. Well, WHERE IS IT? (Note to the clueless: *this* is certainly not IT!) MUSHROOMS AND PUDDING ===================== I find it OUTRAGEOUS the weaselly and underhanded way this mystery individual, apparently wholly intentionally, has TOTALLY STYMIED and THWARTED the SOLE cypherpunk progress in this area. Cypherpunks, do you feel like trampled mushrooms yet? well I DO. Not only that, Mr. Reynard wrote cryptically: >While I find the imputation that I ought to be executed as >an Enemy of the People both offensive and absurd, it seems >that I could be acting retrogressively, though no sane reason >why I am doing so has been presented to me. who is it that levelled these atrocious, filthy accusations? Mr. Reynard took it upon himself to do a PUBLIC SERVICE. Who is it that suggested that it was anything but valiant heroism? Speak, I demand it! Reveal yourself! From whence comes this treasonous, traitorous slime? Where is the DOUBLE AGENT in our midst? >I will allow others to continue their efforts, >and would be pleased to help in whatever manner I can, but do >not wish to foment further splintering of what is already a >divided group. Please Mr. Reynard, isn't it clear that the cypherpunks will forever have more splinters than a shredded beam? Who CARES what anybody else thinks! Isn't there any SCRAP of INTRINSIC MERIT in this project? Is `cypherpunks' just the brand name for MUSHY GUTLESS SPINELESS PUDDING? Look, if somebody is doing a lot to get the whistleblower group going, I PRAISE AND COMMEND YOU. But so far I see ABSOLUTELY NO SIGNS anything is happening! After weeks of hypothetical hyperventilating, we have nothing but a DEAD CORPSE! In this fragile and critical period, I would rather make a fool of myself shouting than be silent as it LANGUISHES INTO OBLIVION. >If interest warrants, or opinion seems different than what >I understand it to be, I reserve the right to change my mind. INTEREST WARRANTS! CHANGE YOUR MIND! If not you, then SOMEBODY! If not now, then IMMEDIATELY! CAVEAT ====== Ok, so others on the list will find my rantings most unpalatable and tell me so in email and on the list, perhaps even humiliating me with epithets and personal attacks, despite that, while bordering precariously, this note is free of them. I DON'T CARE! I'm a desperate man! This thing is just too IMPORTANT for me to care about STEPPING ON SOME TOES or BLOODYING MY NOSE. It is the first feeble step toward a kingdom of Electronic Democracy, and we are just tripping and falling over each other like drunken legislators! Yes, some will say `what are you doing about it personally?' I am WAITING FOR THE GROUP TO BE CREATED so a tentative FAQ CAN BE POSTED THERE! (FAQs do not arise in vacuums, they are forged from posting and feedback! I speak from experience!) No, my worthless, prejudiced, personal FAQ for whistleblowers is NOT WRITTEN, because right now, for strange and mysterious reasons I will leave to the reader to prophesize, to do so currently would SCANDALOUS WASTE OF MY TIME! 'scuze me while I go get some water, i'm getting hoarse...

1 0

The Clipper (clip on <clap clap> clip off <clap clap>)
by poier＠sfu.ca 18 May '93

18 May '93

One question regarding the proposed Clipper chip: What exactly is the key escrow facility? From what I can tell, it seems to be the bit that allows the LEEF... Skye -- "Thppt bwach oop ack" - Bill the Cat | -----====> Skye Merlin Poier <====----- PGP Public Key available on request | Undergrad in CMPT/MATH (Virtual Reality)

1 0

No Subject
by Eric Hughes 17 May '93

17 May '93

Date: Mon, 17 May 93 14:04:46 PDT From: jim(a)RSA.COM (Jim Bidzos) Subject: [ROBACK(a)ECF.NCSL.NIST.GOV: Answers to Your Questions] FYI. NIST has responded to my questions. Feel free to distribute. -Jim Date: Mon, 17 May 1993 16:44:28 -0400 (EDT) From: ROBACK(a)ECF.NCSL.NIST.GOV Subject: Answers to Your Questions To: jim(a)RSA.COM X-Vmsmail-To: SMTP%"jim(a)rsa.com" To: Mr. Jim Bidzos, RSA Data Security, Inc. From: Ed Roback, NIST Mr. Ray Kammer asked me to forward to you our answers to the questions you raised in your e-mail of 4/27. We've inserted our answers in your original message. ------------------------------------------------------ From: SMTP%"jim(a)RSA.COM" 27-APR-1993 03:13:12.75 To: clipper(a)csrc.ncsl.nist.gov CC: Subj: Clipper questions

1 0

NIST answers to RSADSI questions
by Eric Hughes 17 May '93

17 May '93

Date: Mon, 17 May 93 14:04:46 PDT From: jim(a)RSA.COM (Jim Bidzos) Subject: [ROBACK(a)ECF.NCSL.NIST.GOV: Answers to Your Questions] FYI. NIST has responded to my questions. Feel free to distribute. -Jim Date: Mon, 17 May 1993 16:44:28 -0400 (EDT) From: ROBACK(a)ECF.NCSL.NIST.GOV Subject: Answers to Your Questions To: jim(a)RSA.COM X-Vmsmail-To: SMTP%"jim(a)rsa.com" To: Mr. Jim Bidzos, RSA Data Security, Inc. From: Ed Roback, NIST Mr. Ray Kammer asked me to forward to you our answers to the questions you raised in your e-mail of 4/27. We've inserted our answers in your original message. ------------------------------------------------------ From: SMTP%"jim(a)RSA.COM" 27-APR-1993 03:13:12.75 To: clipper(a)csrc.ncsl.nist.gov CC: Subj: Clipper questions

1 0