[446] in cryptography@c2.net mail archive
Re: Analysis of proposed UK ban on use of non-escrowed crypto.
daemon@ATHENA.MIT.EDU (Ben Laurie)
Tue Apr 1 21:05:45 1997
To: Kent Crispin <kent@songbird.com>
Date: Mon, 24 Mar 1997 09:02:23 +0000 (GMT)
From: Ben Laurie <ben@gonzo.ben.algroup.co.uk>
Cc: aba@dcs.ex.ac.uk, cypherpunks@cyberpass.net, cryptography@c2.net,
trei@process.com, ttp.comments@ciid.dti.gov.uk, rja14@cl.cam.ac.uk
In-Reply-To: <19970323171946.18662@bywater.songbird.com> from "Kent Crispin" at Mar 23, 97 05:19:46 pm
Reply-To: ben@algroup.co.uk
Kent Crispin wrote:
> You need to revise your knowledge: NorTel's "Entrust" product does key
> escrow, and has been on the market for some time. It has FIPS (US
> Federal Information Processing Standard) certification. Signing and
> encrypting keys are separated: only encryption keys are escrowed. The
> intended market is the large enterprise.
Just because someone implements it, it doesn't mean it works - look at X.500,
for example. There are obvious pressures in the US to implement key escrow
whether it works or not.
I haven't seen the specs for Entrust, though - are they available?
Cheers,
Ben.
--
Ben Laurie Phone: +44 (181) 994 6435 Email: ben@algroup.co.uk
Freelance Consultant and Fax: +44 (181) 994 6472
Technical Director URL: http://www.algroup.co.uk/Apache-SSL
A.L. Digital Ltd, Apache Group member (http://www.apache.org)
London, England. Apache-SSL author
