Comment: it is essential you get this right (Score 1) 517
Some discussion on responsible disclosure over in the Security Stack Exchange site: htt p://security.stackexchange.com/q/52/485
If Crypto is outlawed: confidentiality gone?->
Submitted
by
frog51
frog51 writes "In certain jurisdictions, use of cryptography by the private sector is limited: e.g. there are reports that in the UAE and other countries not all of the encryption capabilities of the BlackBerry are permitted.
This removes a mainstay of current IT confidentiality. Are there workarounds in place? Or does this potentially break a major modern assumption — that we can secure information wherever we are?
In the 1990s the U.S. government tried to force the use of SkipJack, an encryption mechanism that would have led to all private sector encryption keys being escrowed. That escrow would have been a major target for espionage and terrorism. The US learned from this mistake, but are other regions doomed to repeat it?"
Link to Original Source
This removes a mainstay of current IT confidentiality. Are there workarounds in place? Or does this potentially break a major modern assumption — that we can secure information wherever we are?
In the 1990s the U.S. government tried to force the use of SkipJack, an encryption mechanism that would have led to all private sector encryption keys being escrowed. That escrow would have been a major target for espionage and terrorism. The US learned from this mistake, but are other regions doomed to repeat it?"
Link to Original Source