RE: [iwar] Crypto Rumour?

From: Glenn Williamson
From: Glenn_Williamson@ottawa.com
To: iwar@egroups.com
Tue, 20 Jun 2000 21:28:05 -0400
Messages sorted by: [ date ][ subject ][ author ][ recipient ]
Next message: From: Fred Cohen To: "[iwar] News"
Previous message: From: Devlon Duthie To: "RE: [iwar] News"
fc  Tue Jun 20 18:30:14 2000
Received: from 207.222.214.225
	by localhost with POP3 (fetchmail-5.1.0)
	for fc@localhost (single-drop); Tue, 20 Jun 2000 18:30:14 -0700 (PDT)
Received: by multi33.netcomi.com for fc
 (with Netcom Interactive pop3d (v1.21.1 1998/05/07) Wed Jun 21 01:30:07 2000)
X-From_: sentto-279987-420-961550969-fc=all.net@returns.onelist.com  Tue Jun 20 20:29:25 2000
Received: from ej.egroups.com (ej.egroups.com [208.50.144.75]) by multi33.netcomi.com (8.8.5/8.7.4) with SMTP id UAA15067 for ; Tue, 20 Jun 2000 20:29:25 -0500
X-eGroups-Return: sentto-279987-420-961550969-fc=all.net@returns.onelist.com
Received: from [10.1.10.35] by ej.egroups.com with NNFMP; 21 Jun 2000 01:29:31 -0000
Received: (qmail 13661 invoked from network); 21 Jun 2000 01:29:28 -0000
Received: from unknown (10.1.10.26) by m1.onelist.org with QMQP; 21 Jun 2000 01:29:28 -0000
Received: from unknown (HELO mail1.rdc3.on.home.com) (24.2.9.40) by mta1 with SMTP; 21 Jun 2000 01:29:28 -0000
Received: from cr908525a ([24.112.219.95]) by mail1.rdc3.on.home.com (InterMail vM.4.01.02.00 201-229-116) with SMTP id <20000621012927.ZFCA416.mail1.rdc3.on.home.com@cr908525a> for ; Tue, 20 Jun 2000 18:29:27 -0700
To: 
Message-ID: 
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300
In-Reply-To: <4.2.2.20000619105952.00aa93c0@poptop.llnl.gov>
Importance: Normal
X-eGroups-From: "Glenn Williamson" 
From: "Glenn Williamson" 
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe: 
Date: Tue, 20 Jun 2000 21:28:05 -0400
Reply-To: iwar@egroups.com
Subject: RE: [iwar] Crypto Rumour?
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

Tony,

 Have you heard anymore, about this, I've been checking and I'm waiting for
an answer back from contacts if there is one.

 Glenn

-----Original Message-----
From: Tony Bartoletti [mailto:azb@llnl.gov]
Sent: Monday, June 19, 2000 2:10 PM
To: iwar@egroups.com
Subject: [iwar] Crypto Rumour?



This is from a thread on the IETF/PKIX mailing list.
Anyone care to comment (confirm/deny/clarify?)
____tony____

=====================================================================

I have heard a rumor that the '128-bit encryption' that Microsoft
is shipping with Windows 2000 has actually been tweaked in such a
way that it is only 128-bit when observed by a non-clued-in person,
but is rather 40-bit for the people who know how it has been designed.

In effect, rumor therefore has it that 88 bits out of the 128 are
set in such a way that it is extremely easy to find them for someone
who knows how. The French are supposed to have found this out, and
they are supposed to have been a little bit upset because of this fact.

I am not sure how much of this is actually the truth. The person
I received this information from might have confused this with the
silent "3DES -> DES" fallback in Windows that has been demonstrated
lately. Can anyone confirm or deny the above rumor?

Anyway. The bottom line is - I think people today are a little bit
crazy to use, and even buy, security software as executables without
any kind of access to the source code. It is plain stupid, and it
gives the country which supplied you with the binaries a perfect
weapon for the information wars that are due to ensue sooner or later.
The world is not all roses all the time. Remember the several-billion-
dollar deal which was lost by the European airplane manufacturer to
Boeing because the USA was eavesdropping on their conversations with
the purchaser?
[Tony: The alleged Echelon Connection]

Iraq, Vatican and several others have learned this lesson when they
bought black-box crypto machines from Crypto AG, only to find out
that the machine transmits the encryption key almost in plaintext
along with the encrypted message. Which, hence, was easily recoverable
by folks from the NSA and from the German intelligence agency.

======================================================================


Tony Bartoletti 925-422-3881 
Information Operations, Warfare and Assurance Center
Lawrence Livermore National Laboratory
Livermore, CA 94551-9900


------------------------------------------------------------------------
Wrox Wireless Developer Conference, Amsterdam, July 10-12. Choose from
40+ technical sessions covering application of WAP, XML, ASP, Java and
C++ to mobile computing. Get your ticket to the future today!
http://click.egroups.com/1/5689/7/_/595019/_/961437904/
------------------------------------------------------------------------

------------------
http://all.net/


------------------------------------------------------------------------
Remember four years of good friends, bad clothes, explosive chemistry 
experiments.
http://click.egroups.com/1/5532/7/_/595019/_/961550969/
------------------------------------------------------------------------

------------------
http://all.net/
Next message: From: Fred Cohen To: "[iwar] News"
Previous message: From: Devlon Duthie To: "RE: [iwar] News"