FCPUNX:PGP Key Escrow and Congress
Eli Brandt
eli at gs160.sp.cs.cmu.edu
Wed Oct 15 11:24:31 PDT 1997
Bruce Schneier wrote:
> From: "Barbara Simons" <simons at VNET.IBM.COM>
>
> Some of these are old arguments that we've been hearing for a while,
> but some are newer. In particular, points 4 and 6 are difficult to
> refute without getting into some technical details. Both points also
> undercut the argument that a key recovery infrastructure potentially
> weakens security. After all, the NSA thinks it's secure enough that it
> can be used by the government.
Non-technical point: the NSA (reportedly) has no intention of using
GAK for classified information. They know that it weakens security.
Do the privacy of the nation's data and the security of its
information infrastructure deserve the same consideration as the
Pentagon's "Confidential" memos? When you're planning to build in a
single point of failure, this is a question you have to ask.
--
Eli Brandt | eli+ at cs.cmu.edu | http://www.cs.cmu.edu/~eli/
More information about the cypherpunks-legacy
mailing list