[2971] in cryptography@c2.net mail archive
Re: IETF building GAK into the PKI
daemon@ATHENA.MIT.EDU (Steve Bellovin)
Wed Jul 15 15:24:51 1998
To: "P.J. Ponder" <ponder@mail.irm.state.fl.us>
cc: Vin McLellan <vin@shore.net>, Carl Ellison <cme@acm.org>,
cryptography@c2.net
Date: Wed, 15 Jul 1998 15:12:06 -0400
From: Steve Bellovin <smb@research.att.com>
In message <Pine.LNX.3.96.980715142659.136G-100000@mail.irm.state.fl.us>, "P.J.
Ponder" writes:
>
> The part here that concerns me is 'employee's personal key'. If it is
> company data, why would it not be stored with a corporate key, or the
> 'employee's corporate key'. Company policy should not permit storage of
> company data with personal keys.
"Personal" key? No, not in the sense of "a key owned by that
individual". But in the sense of "a company key known only to
a few individuals, possibly one" -- yes, that's exactly what's
meant. Nothing else scales.
Consider -- my company has more that 100,000 employees. Should we
all share the same key? Should we all share it given all the risks
of insider attacks?
