It's worth remembering that for the most part, corporations don't have ethics, they have bottom lines. Most of PKP's objections to the DSA were not really solid; rather, they were in defense of RSA as a profit center. There only two really big ones -- that DSA as originally proposed had too small a key size, and that it doesn't provide secrecy, only authentication. The former has been fixed by NIST, and the latter was a design goal. In this case, NIST really had no choice but to deal with PKP. Apart from the question of the Diffie-Hellman patent -- and in my opinion, DSA definitely did infringe on it -- the proposed algorithm was very close to Schnorr's algorithm, which was patented, and to which PKP had purchased the rights. If NIST had gone ahead without making a deal with PKP, the standard would have been tied up in lawsuits for years, with the outcome quite uncertain. And while that may or may not have suited this community, it would not meet NIST's objectives. I don't see the hand of conspiracy here; rather, I see an encouraging trend, that the private sector is able to compete in cryptographic competence with NSA. I am encouraged by the pledges to allow non-commercial use -- note the lack of any RSAREF-like interface -- and to engage in non-discriminatory licensing. --Steve Bellovin
S. Bellovin <smb@research.att.com>
I don't see the hand of conspiracy here; rather, I see an encouraging trend, that the private sector is able to compete in cryptographic competence with NSA.
I am encouraged by the pledges to allow non-commercial use -- note the lack of any RSAREF-like interface -- and to engage in non-discriminatory licensing.
By cooperating with NIST on DSA and Clipper, they are implicitly sending the message that the poorly-to-outrageously directed standards making processes for both are wholly acceptable assuming PKP directly profits. That is, that is the weak `nonconspirational' interpretation. The conspirational interpretation is that this announcement is just a blatant indication that PKP, in addition to NIST, is controlled by the NSA. Let me remind everyone that Capstone has a yet-unspecified exchange protocol. Denning suggested on RISKS that Diffie-Hellman (covered by PKP patents) `could be used'. There is some serious evasion going on here. If Capstone is already built, with a public-key algorithm installed, it suggests that PKP has been cooperating on the Clipper/Capstone proposals all along. It will be most interesting to hear announcements on Capstone that announce its key exchange mechanism. PKP `had' the ability to murder Clipper/Capstone in its crib if it so desired, more so than any other single nexus, by denying the right to use public key algorithms (on which it now has a strangling, monopolistic lock). Gad, I can't believe it didn't occur to me to lobby them to do so. In retrospect, it wouldn't have done anything more than heighten the inevitable betrayal. Maybe Mr. Bellovin can clarify how this agreement represents an `encouraging trend in the private sector to compete with the NSA' -- Good lord man, not unless you think that PKP represents the entire private sector in cryptographic applications. Uh, touche' -- you do and it does. Does anybody feel like raiding PKP dumpsters? :( P.S. doubt P.R.Z. will be in a docile mood after hearing this one...
participants (2)
-
L. Detweiler -
smb@research.att.com