Re: German Key Usage

[Robert Moskowitz <rgm-sec@xxxxxxxxxxxxxxx>]

At 04:19 PM 8/14/98 -0700, -=jack=- wrote:
>Why would you ever escrow any signature key? I personally have never heard of
>any proposal/plan/law/etc to escrow signature keys. My understanding of why
>the
>US Government and law enforcement want key escrow is to decrypt
>information, not
>to be able to regenerate a signature.

Check out the UK white paper.  From the reports I am still getting they
still have escrowing of authentication keys in it.

>of course I'll be damned if I'll use an escrowed key to encrypt anything
>either, ;-), but hey, I want my privacy damnit, and no ballyhoo about
>drugs/terrorists/kiddie porn makes that worth sacrificing.  Of *course*
>this is just my opinion...!

Actaully I would have at least three private; certificates.  One would be
my signing cert and that would not be escrowed.  I would then have TWO
encrypting certs.  One would be escrowed with my estate, the other in some
deep dark place that only I know.

Those items I wish to protect, but give over to my estate (like financial
records) would be encrypted with the one key.  Those things that I never
want anyone to see (like my personal journal) would be encrypted with the
other key.


Of course my business personna would have a couple of certs also.....



Robert Moskowitz
ICSA
Security Interest EMail: rgm-sec@htt-consult.com