[17387] in cryptography@c2.net mail archive
Re: encrypted tapes (was Re: Papers about "Algorithm hiding" ?)
daemon@ATHENA.MIT.EDU (Mark Allen Earnest)
Tue Jun 7 22:44:35 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Tue, 07 Jun 2005 21:19:07 -0400
From: Mark Allen Earnest <mxe20@psu.edu>
Reply-To: mxe20@psu.edu
To: "Steven M. Bellovin" <smb@cs.columbia.edu>,
cryptography@metzdowd.com
In-Reply-To: <20050608003430.725933BFECD@berkshire.machshav.com>
This is a cryptographically signed message in MIME format.
--------------ms020803080708080208090905
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Steven M. Bellovin wrote:
> The bigger issue, though, is more subtle: keeping track of the keys is
> non-trivial. These need to be backed up, too, and kept separate from
> (but synchronized with) the tapes. Worse yet, they need to be kept
> secure. That may mean storing the keys with a different escrow
> company. A loss of either piece,the tape or the key, renders the
> backup useless.
Basically, expensive or not, security is very hard to get right. When
you look at Choicepoint, Bank of America, and Citigroup (not to mention
universities and smaller businesses) they have little to no incentive to
keep your personal data secure. YOU bear the cost of data compromise,
not them. The worst they get is some bad publicity and only if it
affects CA residents, otherwise it can be kept quiet. The threat of bad
publicity does not mean much when next week your compromise due to bad
security will be forgotten as the media switches to the next one.
As it stands today, the cost/benefit analysis easily directs them away
from taking strong measures to protect customer's financial data. Doing
so is time consuming, opens up potential for problems, and gets them
next to nothing in return.
--
Mark Allen Earnest
Lead Systems Programmer
Emerging Technologies
The Pennsylvania State University
Lt Commander
Centre County Sheriff's Office Search and Rescue
KB3LYB
--------------ms020803080708080208090905
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature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--------------ms020803080708080208090905--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
