[117487] in Cypherpunks
Re: NSA key in Windows?
daemon@ATHENA.MIT.EDU (William H. Geiger III)
Fri Sep 3 23:35:28 1999
Date: Fri, 3 Sep 1999 23:22:31 -0400
Message-Id: <199909040322.XAA17205@domains.invweb.net>
From: "William H. Geiger III" <whgiii@openpgp.net>
To: Multiple recipients of list <cypherpunks@openpgp.net>
Reply-To: "William H. Geiger III" <whgiii@openpgp.net>
In <4.2.0.58.19990903200716.00b72dd0@mail.wenet.net>, on 09/03/99
at 08:12 PM, Greg Broiles <gbroiles@netbox.com> said:
>news.com has an updated story at
><http://www.news.com/News/Item/0,4,41277,00.html?st.ne.fd.mdh.ni> - the
>new information is:
>Richard Smith of Phar Lap says he's found the NSA key in software as far
>back as 1998;
>NSA faxed a statement to news.com saying that export control regs require
> that crypto API's must be signed. [NB: this requirement doesn't exist in
> the published crypto export regs at 15 CFR 740 et seq; perhaps it's one
>of their nondisclosed requirements.]
>Microsoft says that NSA reviewed the crypto architecture, including the
>"backup key", and it was approved by NSA;
>Microsoft says the "backup key" has always been present in the Crypto
>API; Microsoft says the third key in the Win2000 builds is a "test key"
>which won't be present in shipping versions of Win2000.
Sounds like the spin doctors are hard at work.
--
---------------------------------------------------------------
William H. Geiger III http://www.openpgp.net
Geiger Consulting Cooking With Warp 4.0
Author of E-Secure - PGP Front End for MR/2 Ice
PGP & MR/2 the only way for secure e-mail.
OS/2 PGP 5.0 at: http://www.openpgp.net/pgp.html
Talk About PGP on IRC EFNet Channel: #pgp Nick: whgiii
Hi Jeff!! :)
---------------------------------------------------------------