|
|
 |
 |
 |
|
|
|||
|
||||
|
||||
|
FYI: Pretty Good Privacy Not Good Enough
From: Mark Gaither (markg@gaither.com)
Fri, 25 Aug 2000 10:18:51 -0500
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Jim: "Re: FYI: Pretty Good Privacy Not Good Enough"
- Previous message: Laurence C. Brevard: "Re: wireless internet at Austin airport"
Pretty Good Privacy Not Good EnoughA German researcher has discovered a major security flaw in the latest versions of the PGP free e-mail encryption software that could allow someone to read another person's encrypted e-mail if he or she was able to intercept it.
The problem arises from a feature that Network Associates added to PGP, which stands for Pretty Good Privacy. The feature allows for third-party key recovery, also known as key escrow.
The flaw, discovered by Ralf Senderek and reported Thursday, highlights the technical difficulties in creating key-recovery systems, said Bruce Schneier, CTO of Counterpane Internet Security and author of Applied Cryptography. Schneier and a group of other cryptographers predicted the exact type of problem that PGP now faces in a paper they wrote in 1997, when the U.S. government was pushing for key escrow, raising the ire of civil libertarians and many software firms in the process.
http://live.altavista.com/e?fromspage=hb/tab1_homepage.htm&categoryid== &only=y&efi˜0&ei!19381&ern=y
- Next message: Jim: "Re: FYI: Pretty Good Privacy Not Good Enough"
- Previous message: Laurence C. Brevard: "Re: wireless internet at Austin airport"
|
Return to |
List Requests to TechTalk-request@obgyn.net Last Updated |