Commercial PGP: Verifying Trustworthiness

Norman Hardy norm at netcom.com
Thu Aug 26 14:57:34 PDT 1993


thug at phantom.com (Murdering Thug) writes:
> I'm assuming the NSA will pressure ViaCrypt to put in a backdoor.  One
> possible backdoor that can be placed inside the commercial PGP and still
> allow it to pass the above test is if commericial PGP secretly writes all
> keys and pass phrases to a block on your hard disk, and marks that
> block as used to the file system.  In order to prevent you from scanning
> your hard disk and finding that block, the information stored there could
> be encrypted by a key which the NSA has in it's possession.
 
At least the Commercial PGP is not tamper proof and examination can,
in principle, discover the backdoor. After discovery it would
impossible to deny.






More information about the cypherpunks-legacy mailing list