[81848] in Cypherpunks

home help back first fref pref prev next nref lref last post

Re: IBM sues critics?

daemon@ATHENA.MIT.EDU (Paul Bradley)
Sun Jun 15 11:10:11 1997

Date: Sun, 15 Jun 1997 12:15:38 +0000 (   )
From: Paul Bradley <paul@fatmans.demon.co.uk>
To: John Smith <jsmith58@hotmail.com>
Cc: cypherpunks@cyberpass.net
In-Reply-To: <199706150054.RAA05736@f23.hotmail.com>
Reply-To: Paul Bradley <paul@fatmans.demon.co.uk>


> Can someone explain the difference between key recovery and key
> escrow?  The IBM white paper describes it at
> http://www.ibm.com/security/html/pp_global5.html in terms of
> giving a keys or a combination to your neighbors, but the
> analogy was hard to follow.

Key escrow is where your keys are held by one or more trusted and 
supposedly independent third parties, on reciept of a court order they 
would release the keys.
Key recovery is more like the clipper scheme where there was a LEAF (law 
enforcement access field) which allowed the LEA to decrypt communications.

But in the end it all comes down to GAK (government access to keys), same 
shit, different name. Forgive me if this explanation is a little hazy, I 
have a mighty hangover (still only 12:15 sunday morning here).

        Datacomms Technologies data security
       Paul Bradley, Paul@fatmans.demon.co.uk
  Paul@crypto.uk.eu.org, Paul@cryptography.uk.eu.org    
       Http://www.cryptography.home.ml.org/
      Email for PGP public key, ID: FC76DA85
     "Don`t forget to mount a scratch monkey"



home help back first fref pref prev next nref lref last post