Re: Encrypted e-mail - what are the laws?

From: BRG (brg_at_nowhere.org)
Date: 08/08/04

• Next message: Mok-Kong Shen: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
• Previous message: Gregory G Rose: "Re: sha-384?"
• In reply to: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Next in thread: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Reply: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sun, 08 Aug 2004 21:17:50 +0100

Mok-Kong Shen wrote:
>
>
> BRG wrote:
>
>> Mok-Kong Shen wrote:
>
>
>>> From my 'vague' memory, France had once forbidden common people
>>> to employ encryption (in a quite general framework) and in UK
>>> one has to provide the encryption key in case demanded by the
>>> authorities.
>>
>>
>> This is not true right now although it might become true in the future.
>>
>> A law has been passed that contains provisions for Government Access
>> to Keys (GAK) but the part of the legislation that contains the
>> clauses covering GAK has to be activated by Parliament and this has
>> not yet happened.
>>
>> It is, however, true that the authorities can demand the decryption of
>> an encrypted message.
>>
>> But this is not the same as being able to demand decryption keys.
>
>
> Thanks for the information. One thing however puzzles me. If
> the authority already has the legal power of demanding decryption,
> why is it then necessary to have a new law to enable them to
> demand the key? (After getting the key, they have to do the
> decryption work themselves. Why don't they just, as now, simply
> let the whole decryption work be done by the person involved?)

I am very much against GAK so its not my job to argue for it.

But the argument used to justify it are about the ability to decrypt
_future_ encrypted messages in situations where speed of action may be
necessary.

    Brian Gladman

---

• Next message: Mok-Kong Shen: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
• Previous message: Gregory G Rose: "Re: sha-384?"
• In reply to: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Next in thread: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Reply: Mok-Kong Shen: "Re: Encrypted e-mail - what are the laws?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: PGP scripting... ... > client is that all files that store 'sensitive' data (customer info and the ... an intruder can use the stored keys for decryption (but not ... reading the keys, of course). ... be hidden by some obscurity like PGP encryption and decryption (I ... (SecProg) Re: How to Decrypt EFS Files in Win XP Pro when OS is lost. ... It seems from the OPs post the keys are gone so that tool will not work. ... > Advanced EFS Data Recovery is a program to recover ... > files encrypted on NTFS partitions created in Windows 2000, ... decryption is possible even when Windows is ... (microsoft.public.windowsxp.security_admin) Re: Encrypted e-mail - what are the laws? ... ]>> decryption work themselves. ... ]e.g. with a master key to derive the message keys. ... They would go to the recipient and demand all of the keys to all of the ... The recipient needs the key in order to decrypt. ... (sci.crypt) Re: About padding with files in AES ... Upon decryption, the decrypting system just needs to look at ... The cyphertext could in a long ... a valid padding. ... added data as a check when only a small number of keys are involved. ... (sci.crypt) Re: FOAK: ATA Disk Password - Oops.... ... Part of RIPA - if they demand that you hand over any relevant keys ... required for decryption, the law says you have to do it. ... (uk.rec.motorcycles)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > sci.crypt  > 2004-08