|Cryptome DVDs are offered by Cryptome. Donate $25 for two DVDs of the Cryptome 12-and-a-half-years collection of 47,000 files from June 1996 to January 2009 (~6.9 GB). Click Paypal or mail check/MO made out to John Young, 251 West 89th Street, New York, NY 10024. The collection includes all files of cryptome.org, cryptome.info, jya.com, cartome.org, eyeball-series.org and iraq-kill-maim.org, and 23,100 (updated) pages of counter-intelligence dossiers declassified by the US Army Information and Security Command, dating from 1945 to 1985.The DVDs will be sent anywhere worldwide without extra cost.|
2 December 1998: Add messages. Add more messages.
2 December 1998
Date: Wed, 2 Dec 1998 10:31:38 -0500 From: <firstname.lastname@example.org> To: <email@example.com>, <firstname.lastname@example.org> Subject: Re:News on Vienna Wassenaar meeting Odds are about 50-50 for an agreement allowing free export of 56-bit products while tightening up the general software note to allow restrictions on mass-market products containing stronger crypto. Stewart Baker Steptoe & Johnson LLP 202.429.6413 email@example.com Baker & Hurst, "The Limits of Trust -- Governments, Cryptography, and Electronic Commerce" is now available from http://www.amazon.com/exec/obidos/ASIN/9041106359
From: "Brian Gladman" <firstname.lastname@example.org> To: <email@example.com> Subject: Re: News on Vienna Wassenaar meeting Date: Wed, 2 Dec 1998 18:18:58 -0000 Stewart Baker: >Odds are about 50-50 for an agreement allowing free export of 56-bit products >while tightening up the general software note to allow restrictions on >mass-market products containing stronger crypto. You may be right but I would hope that countries other than the US who are present might confine their wishes (and the outcome) to provisions that are compliant with the terms of the agreement under which they are being sought. I would hope that the US government would do this too but such niceties don't seem to bother them much. It is stated clearly in the Wassenaar Arrangement that it will not be directed against any state or group of states and ***will not impede bona fide civil transactions***. DES is now at the end of its life and the US government has a programme in place for a new cryptographic standard to replace it - the AES programme. This is a ***civil*** programme designed to meet purely commercial encryption requirements. NIST has a good reputation for producing standards and it is reasonable to presume that they have carefully set the AES algorithm requirements to be fully representative of commercial needs as they now see them. All AES candidate algorithms have to be capable of operating with keys lengths of 128, 192 and 256 bits. NIST is an agency of the US government and it is hence clear that the ***US governemnt view*** of the minimum key length needed to meet future civil encryption requirements is 128 bits. I emphasise that the AES effort is a US GOVERNMENT SPONSORED CIVIL PROGRAMME and I hence repeat: THE US GOVERNMENT VIEW IS THAT THE MINIMUM KEY LENGTH REQUIRED TO MEET FUTURE CIVIL AND COMMERCIAL ENCRYPTION NEEDS IS 128 BITS. 128 bits is already a typical key length used in civil and commercial, mass market software. And the AES process will rapidly ensure that 128 bits is the minimum key length used in such products. And this has the full approval of the US government - otherwise the NIST AES programme could not exist. Given 128 bit keys as the norm for civil use it hence follows that any restrictions on civil or mass market software at key lengths at or below 128 bits ***would be*** a massive impediment to bona fide civil transactions. Setting or even just allowing such standards within the Wassenaar process would hence contravene the terms of the arrangement. I don't doubt that this is what the US government wants. Nor do I doubt their determination to ignore the provisions of the WA in trying to achieve this. I just hope that other governments are more respectful of their obligations under the arrangement and move to block any such restrictions. Brian
Date: Wed, 2 Dec 1998 13:41:21 -0500 From: <firstname.lastname@example.org> To: <email@example.com> Subject: Re: News on Vienna Wassenaar meeting You may be right, Brian, but of course DES has been the US government standard for civilian encryption for twenty years, and Wassenaar (or its predecessor, CoCom) has required licenses for DES exports for the entire period. So Wassenaar tradition, at least, is against your reading. Stewart Baker Steptoe & Johnson LLP
From: "Scott M. Gearity" <sgearity@MK.IBEK.COM> To: "'firstname.lastname@example.org'" <email@example.com> Subject: RE: News on Vienna Wassenaar meeting Date: Wed, 2 Dec 1998 11:18:48 -0500 According to high-ranking U.S. officials at the Bureau of Export Administration, it's highly unlikely that this Wassenaar Plenary meeting (long-scheduled) will result in any significant changes to the crypto rules. The U.S., U.K., and France are just too far away from everyone else at the Wassenaar table for major changes to be made to either the General Software Note or intangibles. And since WA changes require a consensus, that makes changes nearly impossible. Scott M. Gearity Export Control Specialist Crypto-Controls Advisory Services MK Technology Tel: +1 202.463.0904 ext. 109 Fax: +1 202.429.9812 firstname.lastname@example.org http://www.cryptocontrols.com
Date: Wed, 02 Dec 1998 11:12:07 -0500 To: email@example.com From: John Young <firstname.lastname@example.org> Subject: Re: News on Vienna Wassenaar meeting Cc: email@example.com According to a Wassenaar spokesman today there will be a press release about the results of the two-day meeting on Friday. Until then no public information will be issued. Inquiries should be directed to the member national representatives. The telephone number of the Vienna spokesman, Igor Meteltin: 43 1 713 5780. A copy of the Friday press release will be faxed upon request to Mr. Meteltin. He says there is no central office of information. The Arrangement is that each member tells its own carefully tailored story of what Wassenaar is, and may be up to. Which is why there is minimal, ever out of date, information at its Web site: http://www.wassenaar.org The Secretariat is closed for the two days of the meeting, which is being held elsewhere in Vienna, also closed to the public for its own protection. However, GILC agents and Secret Agent Erich Moechel in Vienna, among others, should promptly intercept and reveal the poop.
Date: Wed, 02 Dec 1998 15:00:54 -0500 To: firstname.lastname@example.org From: John Young <email@example.com> Subject: Re: News on Vienna Wassenaar meeting Forwarded for Erich Moechel (from Vienna): Date: Wed, 2 Dec 1998 20:51:03 +0100 Subject: Re: News on Vienna Wassenaar meeting Dear Listmembers, We are just in preparation of publishing the (not so public) working paper on police surveillance plans in full text. The joint EU home & justice ministers will discuss this paper in their Brussels meeting tomorrow ;)) http://www.telepolis.de/tp/deutsch/special/enfo/6333/1.html (German) Here are the documents plus two Articles in English. Containing wiretapping GSM & Iridium plans plus some Crypto plans. The secret cops seem to be sure they will get what they want: key escrow crypto & nothing else all over Europe http://www.telepolis.de/tp/deutsch/special/enfo/default.html For this Wassenaar lagged behind. My sources say there is no basis for a decision on Crypto other than prolongation of the status quo thinkable - they cancelled the Crypto experts meeting before. > The Secretariat is closed for the two days of the meeting, > which is being held elsewhere in Vienna, also closed to the > public for its own protection. If they moved out of their office this should mean that the plenary session participants exceeded the usual number. The office's meeting room has space for about 120 people. The other possibility is just a joke: That Barry Steinhardt's & my presence in summer at the Wassenaar office has defaced this spooky location forever ;) Let me see what I can get out till Friday & after. Thanx for the information, I was a bit more in Brussels mentally than here. Erich -.-.- --.- -.-.- --.- -.-.- --.- q/depesche taeglich ueber internationale hacks--.-zensur im netz crypto--.-IT mergers--.-monopole & die universalitaet digitaler dummheit subscribe http://www.quintessenz.at -.-.- --.- -.-.- --.- -.-.- --.- Certified PGP key http://keyserver.ad.or.at -.-.- --.- -.-.- --.- -.-.- --.- erich-moechel.com/munications ++43 2266 687201 fon ++43 2266 687204 fax -.-.- --.- -.-.- --.- -.-.- --.-
From: "Erich Moechel" <firstname.lastname@example.org> To: <email@example.com>, firstname.lastname@example.org Date: Wed, 2 Dec 1998 22:07:04 +0100 Subject: Re:News on Vienna Wassenaar meeting Hello 2 all, Just stepped in... > Odds are about 50-50 for an agreement allowing free export of 56-bit > products while tightening up the general software note to allow > restrictions on mass-market products containing stronger crypto. I do not think that the latter is likely with 33 Wassenaar member states & statutes saying all decisions must be unanimous. But let us see. Maybe changing their usual session location could indeed mean something special. cu Erich
Date: Wed, 2 Dec 1998 19:16:43 -0500 From: nigel hickson <email@example.com> Subject: Re: Wassenaar and UK To: "INTERNET:firstname.lastname@example.org" <email@example.com> Colleagues Just to confirm that I will try and give you read out from Wassenaar as soon as we hear anything. What has been said about consensus is true (ie a new text has to be agreed by all). But unless there IS a new text the "sunset" clause could be triggered (put in when list was first agreed re encryption) with result that ALL controls on crypto would fall (from Wassenaar). Hence there is real pressure to reach an agreement. Nigel [JYA Note: Nigel Hickson is with the UK Department of Trade and Industry (DTI) which handles encryption matters.]