[146538] in cryptography@c2.net mail archive
Re: [Cryptography] Backup is completely separate
daemon@ATHENA.MIT.EDU (Phillip Hallam-Baker)
Tue Sep 3 14:30:08 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <84D31CF8-654C-4B02-83E9-77DBF1C7FAF7@gmail.com>
Date: Tue, 3 Sep 2013 12:30:00 -0400
From: Phillip Hallam-Baker <hallam@gmail.com>
To: John Kelsey <crypto.jmk@gmail.com>
Cc: =?ISO-8859-1?Q?Far=E9?= <fahree@gmail.com>,
"cryptography@metzdowd.com" <cryptography@metzdowd.com>,
Peter Saint-Andre <stpeter@stpeter.im>,
"Perry E. Metzger" <perry@piermont.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
--===============5347212834174086499==
Content-Type: multipart/alternative; boundary=089e0112c136466b5c04e57d3391
--089e0112c136466b5c04e57d3391
Content-Type: text/plain; charset=ISO-8859-1
On Mon, Sep 2, 2013 at 11:03 PM, John Kelsey <crypto.jmk@gmail.com> wrote:
> The backup access problem isn't just a crypto problem, it's a social/legal
> problem. There ultimately needs to be some outside mechanism for using
> social or legal means to ensure that, say, my kids can get access to at
> least some of my encrypted files after I drop dead or land in the hospital
> in a coma. Or that I can somehow convince someone that it's really me and
> I'd like access to the safe deposit box whose password I forgot and lost my
> backup copy of. Or whatever.
>
> This is complicated by the certainty that if someone has the power to get
> access to my encrypted data, they will inevitably be forced to do so by
> courts or national security letters, and will also be subject to extralegal
> pressures or attacks to make them turn over some keys. I suspect the best
> that can be workably done now is to make any key escrow service's key
> accesses transparent and impossible to hide from the owner of the key, and
> then let users decide what should and shoudn't be escrowed. But this isn't
> all that great an answer.
>
To avoid mandated/coerced release substitute 'keep at bank' with 'bury at
undisclosed location'.
There is really no 100% reliable way to make things available to your heirs
while avoiding government coercion. Particularly since the government
issues the documents saying that you are dead.
--
Website: http://hallambaker.com/
--089e0112c136466b5c04e57d3391
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><br><div class=3D"gmail_extra"><br><br><div class=3D"gmail=
_quote">On Mon, Sep 2, 2013 at 11:03 PM, John Kelsey <span dir=3D"ltr"><=
<a href=3D"mailto:crypto.jmk@gmail.com" target=3D"_blank">crypto.jmk@gmail.=
com</a>></span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex">The backup access problem isn't just a c=
rypto problem, it's a social/legal problem. =A0There ultimately needs t=
o be some outside mechanism for using social or legal means to ensure that,=
say, my kids can get access to at least some of my encrypted files after I=
drop dead or land in the hospital in a coma. =A0Or that I can somehow conv=
ince someone that it's really me and I'd like access to the safe de=
posit box whose password I forgot and lost my backup copy of. =A0Or whateve=
r.<br>
<br>
This is complicated by the certainty that if someone has the power to get a=
ccess to my encrypted data, they will inevitably be forced to do so by cour=
ts or national security letters, and will also be subject to extralegal pre=
ssures or attacks to make them turn over some keys. =A0I suspect the best t=
hat can be workably done now is to make any key escrow service's key ac=
cesses transparent and impossible to hide from the owner of the key, and th=
en let users decide what should and shoudn't be escrowed. =A0But this i=
sn't all that great an answer.<br>
</blockquote><div><br></div><div>To avoid mandated/coerced release substitu=
te 'keep at bank' with 'bury at undisclosed location'.</div=
><div>=A0</div><div>There is really no 100% reliable way to make things ava=
ilable to your heirs while avoiding government coercion. Particularly since=
the government issues the documents saying that you are dead.</div>
<div><br></div><div><br></div><div><br></div><div><br></div></div>-- <br>We=
bsite: <a href=3D"http://hallambaker.com/" target=3D"_blank">http://hallamb=
aker.com/</a><br>
</div></div>
--089e0112c136466b5c04e57d3391--
--===============5347212834174086499==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============5347212834174086499==--
