[786] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

Re: key recovery vs data backup

daemon@ATHENA.MIT.EDU (Donald E. Eastlake 3rd)
Fri May 9 17:04:12 1997

Date: Fri, 9 May 1997 16:36:45 -0400 (EDT)
From: "Donald E. Eastlake 3rd" <dee@cybercash.com>
To: Tom Weinstein <tomw@netscape.com>
Cc: cryptography@c2.net
In-Reply-To: <33738358.446B@netscape.com>

Seems like it's also very convenient if you get a bounce back a couple 
days later and have forgotten what was in the message and want to read 
it.

Donald

On Fri, 9 May 1997, Tom Weinstein wrote:

> Date: Fri, 09 May 1997 13:04:40 -0700
> From: Tom Weinstein <tomw@netscape.com>
> To: Hal Finney <hal@rain.org>
> Cc: cryptography@c2.net
> Subject: Re: key recovery vs data backup
> 
> Hal Finney wrote:
> > 
> > The problem with the key-safe model is that it does not handle
> > outgoing mail or other data.  Outgoing email will be encrypted with
> > keys of the destination, and management won't have access to its
> > contents in a key-safe model.  For some businesses this is an even
> > more important requirement than local or incoming data access, because
> > they are afraid their employees will export company secrets under the
> > cover of encrypted email.
> > 
> > You have to additionally configure the client so it always encrypts to
> > a message recovery key in addition to other recipients.  This message
> > recovery key may be the user's own key in the key-safe model, or it
> > may be a special company key which is used for this purpose.
> 
> We always include the sender as a recipient.  This is because the user
> can have all outgoing mail automatically copied to a "Sent" folder.
> 
> -- 
> You should only break rules of style if you can    | Tom Weinstein
> coherently explain what you gain by so doing.      | tomw@netscape.com
> 

=====================================================================
Donald E. Eastlake 3rd     +1 508-287-4877(tel)     dee@cybercash.com
   318 Acton Street        +1 508-371-7148(fax)     dee@world.std.com
Carlisle, MA 01741 USA     +1 703-620-4200(main office, Reston, VA)
http://www.cybercash.com           http://www.eff.org/blueribbon.html
home help back first fref pref prev next nref lref last post