[783] in cryptography@c2.net mail archive
Re: key recovery vs data backup
daemon@ATHENA.MIT.EDU (Tom Weinstein)
Fri May 9 16:29:14 1997
Date: Fri, 09 May 1997 13:04:40 -0700
From: Tom Weinstein <tomw@netscape.com>
To: Hal Finney <hal@rain.org>
CC: cryptography@c2.net
Hal Finney wrote:
>
> The problem with the key-safe model is that it does not handle
> outgoing mail or other data. Outgoing email will be encrypted with
> keys of the destination, and management won't have access to its
> contents in a key-safe model. For some businesses this is an even
> more important requirement than local or incoming data access, because
> they are afraid their employees will export company secrets under the
> cover of encrypted email.
>
> You have to additionally configure the client so it always encrypts to
> a message recovery key in addition to other recipients. This message
> recovery key may be the user's own key in the key-safe model, or it
> may be a special company key which is used for this purpose.
We always include the sender as a recipient. This is because the user
can have all outgoing mail automatically copied to a "Sent" folder.
--
You should only break rules of style if you can | Tom Weinstein
coherently explain what you gain by so doing. | tomw@netscape.com
