[Cryptography] Fwd: [IP] RSA Response to Media Claims Regarding NSA Relationship
Phillip Hallam-Baker
hallam at gmail.com
Sat Dec 28 12:59:16 EST 2013
On Sat, Dec 28, 2013 at 12:42 PM, Thierry Moreau <
thierry.moreau at connotech.com> wrote:
>
>>
>> Today the rules and players are different.
>>
>
> But due to "the power of the installed base," the above-mentioned victory
> is still highly influential.
I think the mistake was a little subtler.
Back in the 1990s when we were fighting the cryptowars, the pass/fail
criteria for any crypto proposal was whether it resisted Louis Freeh's
wiretap ambitions. Which given that Freeh went on to facilitate a GOP coup
d'etat impeaching a President over a blow job was pretty damn important.
As a result we failed a lot of approaches that have delivered much more
real world security than the IETF projects ever have. The IETF was pushing
end-to-end solutions and rejecting anything that fell short of that ideal.
Meanwhile we passed a lot of security protocols that were unusable in the
real world. The IPSEC standard does not support NAT to this day. Only
implementations support NAT passthrough and they do so in ways that require
a huge amount of folklore to be known in order to make an interoperable
implementation.
We accepted a situation where we had two separate email specifications with
a disjoint set of features and called them both standards.
Meanwhile every power plant, water plant and chemical plant in the country
runs with no authentication on any of the sensor or control buses.
--
Website: http://hallambaker.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20131228/dff891de/attachment.html>
More information about the cryptography
mailing list