[124883] in cryptography@c2.net mail archive
Re: RIM to give in to GAK in India
daemon@ATHENA.MIT.EDU (Arshad Noor)
Fri May 30 13:29:25 2008
Date: Wed, 28 May 2008 11:53:05 -0400 (EDT)
From: Arshad Noor <arshad.noor@strongauth.com>
To: Derek Atkins <warlord@MIT.EDU>
Cc: cryptography@metzdowd.com, "Perry E. Metzger" <perry@piermont.com>
In-Reply-To: <20080527115412.jbi39roku5sscss8@webmail.mit.edu>
Even if RIM does not have the device keys, in order to share encrypted
data with applications on the RIM server, the device must share a session
key with the server; must it not?. Isn't RIM (their software, actually)
now in a position to decrypt content sent between Blackberry users? Or,
does the Blackberry encryption protocol work like S/MIME?
Arshad Noor
StrongAuth, Inc.
----- Original Message -----
From: "Derek Atkins" <warlord@MIT.EDU>
To: "Perry E. Metzger" <perry@piermont.com>
Cc: cryptography@metzdowd.com
Sent: Tuesday, May 27, 2008 8:54:12 AM (GMT-0800) America/Los_Angeles
Subject: Re: RIM to give in to GAK in India
Quoting "Derek Atkins"
Wow, and April 1st was almost two months ago. This is just a bunch
of FUD. If someone actually talked to RIM they would find out that
it's technically impossible for them to do this because THEY DONT HAVE
THE DEVICE KEYS.
http://news.yahoo.com/s/afp/20080527/tc_afp/indiacanadacompanyrimblackberrytelecomsecurity
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
