An article in today's (Fri, Oct 3) New York Times (CyberTimes) <http://www.nytimes.com/library/cyber/week/100397pgp.html> describes the new release of "PGP for Business Security 5.5," which contains mechanisms that incorporate key recovery mechanism that can either be volontary or be enforced by using PGP's software for controlling a company's SMTP server -- the server can verify that all encrypted messages include the corporate public key (or conform to other corporate
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 3 Oct 1997 17:27:29 +0200, in list.cypherpunks you wrote: policies): [snip] Keep in mind that this is the 'PGP for Business'. Companies often operate on the principle that email that's sent and received from their machines is the company's, not the employee's. This is actually reasonable business practice. Specially when encryption enters the picture. The employee could walk under a bus, and leave some vital but encrypted emails in his mailbox. This could be a real problem for corporations. Individuals should of course stay as far away from something like this as possible. Alex -----BEGIN PGP SIGNATURE----- Version: PGP for Personal Privacy 5.0 Charset: noconv iQA/AwUBNDXEUduYAh4dUSo/EQKERQCg6v6i8v+hvh4/zFDXGEt2e0eyl0kAn2An 2tlYh85ewSbxsCmD8L9H1OI/ =i0zt -----END PGP SIGNATURE----- --- Violence is the last resort of those who have lost all control over a situation.