Rewriting the cryptography debate

Matt Blaze mab at crypto.com
Fri Feb 29 17:12:24 EST 2008 

So I recently re-read Lawrence Wright's controversial piece in the
New Yorker profiling Director of National Intelligence Mike McConnell.
(http://www.newyorker.com/reporting/2008/01/21/080121fa_fact_wright)
While the piece's glimpse into the administration's attitudes toward  
torture
and warrantless wiretaps have gotten much attention, I was particularly
struck by this paragraph:

      In the nineties, new encryption software that could protect  
telephone
      conversations, faxes, and e-mails from unwarranted monitoring  
was coming
      on the market, but the programs could also block entirely legal  
efforts
      to eavesdrop on criminals or potential terrorists. Under  
McConnell's
      direction, the N.S.A. developed a sophisticated device, the  
Clipper Chip,
      with a superior ability to  encrypt any electronic  
transmission; it also
      allowed law-enforcement officials, given the proper authority,  
to decipher
      and eavesdrop on the encrypted communications of others.  
Privacy advocates
      criticized the device, though, and the Clipper was abandoned by  
1996. "They
      convinced the folks on the Hill that they couldn't trust the  
government to
      do what it said it was going to do," Richard Wilhelm, who was  
in charge of
      information warfare under McConnell, says.

This seems to me a significant re-writing of history, and the Wilhelm  
quote a particularly
disingenuous interpretation of recent events.  In fact, Clipper died  
on the vine due to
technical problems that rendered it ineffective for its intended  
purpose (to say nothing
of the extravagance of being implemented in an expensive tamper- 
resistant ASIC).  And
key escrow and crypto export controls died (in 2000) not from an act  
of Congress (which
never actually voted on any cryptography legislation), but from  
unilateral action within
the executive branch.  In 2004, the Bush administration further  
liberalized the crypto
export control policies of the previous administration, which I  
believe had (and still
have) strong bipartisan support.

While Clipper certainly was a lightning rod for criticism on privacy  
grounds, the changes
in policy that eventually occurred can hardly be attributed to some  
sort of frightened
capitulation to an out-of-control privacy lobby, as the quote implies.

I blog a bit more about this at http://www.crypto.com/blog/ 
mcconnell_clipper/

-matt

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list