-----BEGIN PGP SIGNED MESSAGE-----
From: Steve Reid <root@edmweb.com>
Phil disagrees with ViaCrypts new "business" version of PGP which apparently encrypts all messages with an employer-supplied public key in addition to any specified by the employee.
Looking at Denning's critique (pro-escrow rant) of the NCR crypto report, she mentioned that mutant version:
[http://www.cosc.georgetown.edu/~denning/crypto/NRC.txt] "Other corporations are similarly adopting products with data recovery capabilities as they integrate encryption into their systems (even PGP comes with data recovery in Viacrypt's Business Edition)."
IMHO Phil Zimmerman has good reason to object to the mutant version, if it's going to cause the PGP name to somehow endorse escrow.
I don't have a problem with companies escrowing keys or using a function like that described for Viacrypt's for official company business. Employees should be made fully aware, however, that their communications are being copied to a company archive. There should be no illusion about the privacy of company communications using company-owned software. For private communications, they should still use a personal copy of PGP or other encryption software of their choice. $.02 me -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBMcFkO6b3EfJTqNC9AQFO5QP+N80T9b9qezlnf15hNsc9lIJoMihNVo/1 8d7bK8Hv4HSAc0FicP9JRSU7jKhm4nTDR0XUnmMeEFLEvq6ari1GdYr9K/HFcIWW AtgC9MGGMqAoCIrMt1oOm9WosrfQcNQfij5ENC8lZlWW01y9YXhXpP9CzcsZmNlz 3rjA7c70MuQ= =JUw7 -----END PGP SIGNATURE----- ------------------------------------------------------------ Omegaman <omega@bigeasy.com> PGP Key fingerprint = 6D 31 C3 00 77 8C D1 C2 59 0A 01 E3 AF 81 94 63 ------------------------------------------------------------