Re: Black Eye for NSA, NIST, and Denning
thad@pdi.com (Thaddeus Beier)
DEADBEAT sez
and importance of Blaze's result for what it is: minuscule. [with which thad disagrees:] Blaze's result destroys the current justification...
Both exaggerate, me thinks. 1) Dr. Blaze blasts out of the water any justification for faith in the competence/honesty of the NSA in this matter. This is a real basic, easy to explain to the corner barber, case of the NSA being caught with its pants down. It was a serious technical flub for them to leave something "this easy"* in the PCMCIA version of Clipper. * "this easy" is compared to the billions-and-billions of years good crypto systems are supposed to hold up, it is not a dig on Dr. Blaze who knows one hell of a lot more about this than do I. 2) We might be net-geeks, but Normal People--even crooks--still use the phone. It is not at all clear to me that the Blaze LEAF Spoof (BLS?) is something which will easily retrofit to a Clipper *phone*. First, is it theoretically possible to do his spoof in the key exchange of a telephone call? Second, is it possible to do it quickly enough that the other phone doesn't get suspicious--i.e., time out? Third, is the needed spoofing hardware something tiny which I will be able to find a Circuit City for $30, which I can trivially plug into my phone as I walk out the door? If not, the practical result is that nearly no one will foil the phone tapping. -kb, the mild-mannered Kent who just realized that: "Now I *am* in the NSA's files. Even the NSA on a stupid isn't dumb enough to not archive this list." P.S. Seeing as how the NSA already has cypherpunks archived, maybe we could talk them into letting us have access to their files--not everything, just the stuff we wrote. FoIA request maybe? -- Kent Borg +1 (617) 776-6899 kentborg@world.std.com kentborg@aol.com Proud to claim 28:15 hours of TV viewing so far in 1994!
Kent Borg writes:
the phone. It is not at all clear to me that the Blaze LEAF Spoof (BLS?) is something which will easily retrofit to a Clipper *phone*.
The official product name is "LEAF Blower." Due to ITAR restrictions, this is only available in kit form. On another topic:
-kb, the mild-mannered Kent who just realized that: "Now I *am* in the NSA's files. Even the NSA on a stupid isn't dumb enough to not archive this list."
P.S. Seeing as how the NSA already has cypherpunks archived, maybe we could talk them into letting us have access to their files--not everything, just the stuff we wrote. FoIA request maybe?
They're not the only ones who've archived the list...
Proud to claim 28:15 hours of TV viewing so far in 1994!
Funny, my records show 71.91 hours so far. --Tim May -- .......................................................................... Timothy C. May | Crypto Anarchy: encryption, digital money, tcmay@netcom.com | anonymous networks, digital pseudonyms, zero 408-688-5409 | knowledge, reputations, information markets, W.A.S.T.E.: Aptos, CA | black markets, collapse of governments. Higher Power: 2^859433 | Public Key: PGP and MailSafe available. "National borders are just speed bumps on the information superhighway."
participants (2)
-
kentborg@world.std.com -
tcmay@netcom.com