[119099] in Cypherpunks
Re: how does disappearing.com's crypto work? (Re: Worthless
daemon@ATHENA.MIT.EDU (Mac Norton)
Thu Oct 14 21:52:21 1999
Date: Thu, 14 Oct 1999 20:31:18 -0500 (CDT)
From: Mac Norton <mnorton@cavern.uark.edu>
To: Steve Orrin <sorrin@lockstar.com>
cc: cypherpunks@einstein.ssz.com, sunder@sunder.net
In-Reply-To: <045401bf16a8$1da8ecf0$0300000a@lithium.lockstar>
Message-ID: <Pine.SOL.4.10.9910142030130.23888-100000@cavern.uark.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Reply-To: Mac Norton <mnorton@cavern.uark.edu>
I think I've read that they claim to destroy, not just erase, at
rather quick intervals, and will stand for an audit on same. Now,
of course, that says nothing about their crypto strength.
MacN
On Thu, 14 Oct 1999, Steve Orrin wrote:
> Actually, it's not security they are after but rather are using encryption
> as a means of "making data disappear". Some one wrote an article on them and
> their technology, I'm not sure who. I don't know if they do a good job at
> the cryptography or not, but the concept is not to secure data but rather to
> make it go away, and using crypto to accomplish this. The real question is
> what security measures are they using for the storage of the keys on the
> server and the transmission of the key at decrypt time.
>
> -so
> -----Original Message-----
> From: adam@cypherspace.org <adam@cypherspace.org>
> To: sunder@sunder.net <sunder@sunder.net>
> Cc: cypherpunks@einstein.ssz.com <cypherpunks@einstein.ssz.com>
> Date: Thursday, October 14, 1999 8:44 PM
> Subject: how does disappearing.com's crypto work? (Re: Worthless
> Disappearing [Self-Destruct E-mail])
>
>
> >
> >
> >I haven't seen any technical discussion of what Disappearing Inc are
> >up to. Did the employee show up at the cypherpunks meeting as
> >advertised?
> >
> >My guess is that they have come up with some kind of server gated
> >forward secrecy protocol for email. Forward secrecy is good, but
> >forward secrecy should be end-to-end, not server based, because then
> >you have to trust the server.
> >
> >Adam
> >
>
>