[2342] in cryptography@c2.net mail archive
Re: Rivest's Wheat & Chaff - A crypto alternative
daemon@ATHENA.MIT.EDU (proff@iq.org)
Tue Mar 24 13:19:57 1998
From: proff@iq.org
In-Reply-To: <v03007802b13c40793149@[172.17.1.150]> from Rick Smith at "Mar 23, 98 11:06:40 am"
To: rsmith@securecomputing.com (Rick Smith)
Date: Tue, 24 Mar 1998 15:49:31 +1100 (EST)
Cc: vin@shore.net, cryptography@c2.net
> authentication secrets if they're essential for snooping. Currently, good
> authentication products fall under export control simply because encryption
> is an essential ingredient of good authentication. Such products are
> generally approved for export as long as the crypto is only used for
> authentication and not for confidentiality.
>
> Rick.
> smith@securecomputing.com
Further, Orange Book B2 and above operating systems are munitions
listed in the US. B2 says nothing about cryptography, it's about
non-cryptographic authentication, trust relationships,
compartmentalisation, tagging, audit trails etc. i.e vital incrediants
in making a multi-user operating system (*not communications*)
secure. The real agenda here is that the US doesn't want other
countries computer systems to be secure from NSA hacker attacks,
pure and simple.
Cheers,
Julian.
