17 Dec
2003
17 Dec
'03
11:17 p.m.
The last issue in the session was that the length of the key, 64-bits, was defined in criteria #1. There was no discussion at the conference on this criteria. It seems that the NIS&T and NSA folks believe that this is a closed topic. The folks in the session did not agree. They felt that 64-bits was not enough.
I hope this gets to you before the conference is over. I would REALLY like to hear the government response to the question: "If keys are escrowed, what purpose does a 64 bit limit serve?" Secondarily, I observe that this apparently precludes the use of OTP. Peter Trei ptrei@acm.org