[2802] in cryptography@c2.net mail archive
Re: PGP International Accused
daemon@ATHENA.MIT.EDU (Anonymous)
Mon Jun 8 16:55:38 1998
Date: Mon, 8 Jun 1998 21:42:07 +0200 (MET DST)
From: Anonymous <nobody@REPLAY.COM>
To: cryptography@c2.net
Looking at "PGP International, BVs" web page it makes the following
very craftily worded claim about key escrow:
http://www.pgpinternational.com/
: All PGP encryption products are 128 bit strong encryption, world wide.
ok so far.
: The products do not contain an unknown or undocumented message or key
: recovery method (usually called backdoor). The only way to recover the
: encrypted messages is to know and use the applicable key.
Woah! Very sneaky: "doesn't contain any unknown or undocumented
message or key recovery method." TIS GAKware, IBM GAKware, GCHQ's
CASM/Cloud Cover GAK proposals could make similar claims to that.
PGP for business _does_ contain a key recovery message, and it is
documented as containing one. The above I think is likely to mislead
most readers.
If people choose to implement communications key recovery for whatever
stated or unstated claimed business "demand" (feh) for communications
key recovery, they can at least have the integrity to stand by their
decisions, and not try to conceal this fact in their advertising.
We expect better use of the PGP brand.
(Cc'd to PRZ so that perhaps he can correct this piece of misleading
marketroidese, which I presume he is unaware of.)
Adam
--
print pack"C*",split/\D+/,`echo "16iII*o\U@{$/=$z;[(pop,pop,unpack"H*",<>
)]}\EsMsKsN0[lN*1lK[d2%Sa2/d0<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<J]dsJxp"|dc`
