[1254] in WWW Security List Archive
Re: Internet Tunnel Question
daemon@ATHENA.MIT.EDU (Mike Muuss)
Sun Dec 17 22:11:59 1995
Date: Fri, 8 Dec 95 12:07:05 EST
From: Mike Muuss <mike@arl.mil>
To: "Brian W. Spolarich" <briansp@umich.edu>
cc: "Prince, Cheryl" <cprince@mfi.com>, www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
> Digital recently released a new (?) way of using the public Internet to create -
> -or replace--private local or wide area networks. All sensitive data is
> encrypted with RSA tech, private key/public key cryptography on either end of
> communication as well as authentication so the parties can accurately identify
> each other. It's called the Digital Internet Tunnel.
While the use of RSA public keys to handle session key management is a
nice addition, the basic idea of an encrypted tunnel has been around for
a long time. We have been using this type of technology in production
for more than 5 years now.
The following units are NSA approved for encryption and transmission of
classified military data over the open InterNet, when used with
appropriate keying materials:
Wang TIU (Trusted Interface Unit)
Xerox XEU (Xerox Encryption Unit)
There are a number of newer devices on the market, but I have no
experience with them.
Is the Digital InterNet Tunnel NSA approved for classified information?
If not, I would place a limited amount of trust in it, even in a
corporate setting. Some careful study would seem to be warranted.
Best,
-Mike Muuss
Chief Computer Scientist
Ballistic Vulnerability/Lethality Division
Survivability and Lethality Analysis Directorate
The U.S. Army Research Laboratory
Attn: AMSRL-SL-BV
APG, MD 21005-5068 USA
410-278-5058 FAX
