[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: How might new GAK be enforced?
>Tim May asks:
>
>: Any other ideas on how the government plans to enforce GAK, to make GAK the
>: overwhelmingly-preferred solution?
>
>The problem seems somewhat analogous to the software copy protection
>problem and maybe the enfocement will be similar: make "examples" of a
>few high profile offenders who are exchanging blatantly un-GAKed
>traffic with foreigners. This assumes they fine tune the law to make
>such behavior illegal without having to prove you yourself exported
>the stuff to them. Wonder what the Supremes will say to that.
Another possible monkey wrench is to send non-GAK messages containg random
data. Since the entropy of encrypted and RNG data should be identical you
can always maintain the messages contain nothing at all and cannot produce
a decrypt key since none exists.
>
>But that's not the end of the story. If there is lots of GAK encrypted
>traffic flowing about, then encrypted traffic in general is no longer
>noteworthy. So as long as your traffic looks like GAK, you won't be
>hassled until they try to read your traffic.
See above comment.
>
>So it's possible that products will appear that use pseudo-GAK
>protocols -- they look just like their GAKed cousins but the GAK
>fields contain plausiable garbage instead of keys. It could even
>turn out to be a vendor "quality control" thing -- oops, the GAK
>was supposed to work but...
>
>You couldn't do that with Clipper (except via Matt Blaze's brute
>forcing of the LEAF checksum) because the crypto wouldn't decrypt a
>packet with an invalid LEAF checksum. Since it was a sealed hardware
>module, implementers had no choice but to play by those rules. There's
>no such enforcable limitation on commercial software implementations.
Another casuality could be anonymity. Once GAK is in place, look for a
requirement for Clipper cards in order to access ISPs.
-- Steve
PGP Fingerprint: FE 90 1A 95 9D EA 8D 61 81 2E CC A9 A4 4A FB A9
---------------------------------------------------------------------
Snoop Daty Data | Internet: [email protected]
Grinder | Voice: 1-702-655-2877
Sacred Cow Meat Co. | Fax: 1-702-658-2673
7075 W. Gowan Road, #2148 |
Las Vegas, NV 89129 |
---------------------------------------------------------------------
Just say NO to prescription DRUGS.
"Of all tyrannies, a tyranny sincerely exercised for
the good of its victims may be the most oppressive."
-- C.S. Lewis
"Surveillence is ultimately just another form of media, and thus, potential
entertainment."
-- G. Beato