[586] in cryptography@c2.net mail archive
RE: Escrow agencies (Fortezza)
daemon@ATHENA.MIT.EDU (Rick Smith)
Sat Apr 19 14:32:37 1997
Date: Sat, 19 Apr 1997 12:04:06 -0600
To: Black Unicorn <unicorn@schloss.li>, Larry Layten <larry@ljl.com>
From: smith@securecomputing.com (Rick Smith)
Cc: "cryptography@c2.net" <cryptography@c2.net>
I wrote:
>I noted the report's statement about how DMS was going to support key
>recovery. I'm skeptical (the risks probably outweigh the cost or benefit),
>but I admit I haven't looked at any recent DMS specifications.
I figured it out. They're counting the key backup behavior of the
certificate authority as "key escrow." This puts the keys under control of
the appropriate command structures, and perhaps provides the necessary
capability of "losing" keys when faced with an external investigation.
Rick.
