Encrypting controversy: a fierce debate erupts over cryptography and privacy.With a little encryption to hide their words, Prince Charles Noun 1. Prince Charles - the eldest son of Elizabeth II and heir to the English throne (born in 1948) Charles and Princess Diana Noun 1. Princess Diana - English aristocrat who was the first wife of Prince Charles; her death in an automobile accident in Paris produced intense national mourning (1961-1997) Diana, Lady Diana Frances Spencer, Princess of Wales might never have suffered the embarrassing spectacle of having transcripts of their private telephone conversations splashed across the front pages of newspapers around the world. The royal couple has not been alone in learning the painful lesson that modern technology has made eavesdropping-whether officially sanctioned, inadvertent, or illegal -- remarkably easy. Today, cellular and cordless telephones transmit conversations via radio waves Radio waves Electromagnetic energy of the frequency range corresponding to that used in radio communications, usually 10,000 cycles per second to 300 billion cycles per second. that can be readily intercepted. Electronic-mail messages pass openly from one computer to another across a network accessible to innumerable people. "We take for granted that by sealing the envelope or closing the door, we can achieve privacy in our communications," says Whitfield Diffie Bailey Whitfield 'Whit' Diffie (born June 5 1944) is a US cryptographer and one of the pioneers of public-key cryptography. He received a Bachelor of Science degree in mathematics from the Massachusetts Institute of Technology in 1965. of Sun Microsystems Sun Microsystems, Inc. (NASDAQ: JAVA[3]) is an American vendor of computers, computer components, computer software, and information-technology services, founded on 24 February 1982. in Mountain View, Calif. "The challenge of modern security technology is to transplant these familiar mechanisms from the traditional world of face-to-face meetings and pen-and-ink communications to a world in which digital electronic communications are the norm and the luxury of personal encounters or handwritten hand·write tr.v. hand·wrote , hand·writ·ten , hand·writ·ing, hand·writes To write by hand. [Back-formation from handwritten.] Adj. 1. messages [is] the exception." Modern technology has provided a solution in the form of sophisticated schemes for encrypting digitized sounds and text. Only a recipient with the proper key for unlocking the secret code can hear or read the otherwise unintelligible UNINTELLIGIBLE. That which cannot be understood. 2. When a law, a contract, or will, is unintelligible, it has no effect whatever. Vide Construction, and the authorities there referred to. , encrypted string of digits. Nonetheless, few telephones and computers used by the general public come equipped with either software or microelectronic circuitry for encrypting speech or text. Indeed, some critics charge that the U.S. government has actively discouraged wide dissemination of cryptographic technology. "Conflicting signals from a succession of administrations have led many to be very confused as to what U.S. citizens have a right to expect from cryptographic technologies and what capabilities the U.S. government would prefer its citizens have available:' says Stephen T. Walker, president of Trusted Information Systems Trusted Information Systems (TIS) was a computer security research and development organization during the 1980s and 1990s, performing computer security research for organizations such as NSA, DARPA, ARL, AFRL, SPAWAR, and others. , Inc., in Glenwood, Md. In April, the Clinton administration Noun 1. Clinton administration - the executive under President Clinton executive - persons who administer the law added a new ingredient that set the cryptographic-policy pot boiling. The White House proposal called for the adoption of a novel encryption scheme as a federal standard. It would incorporate a "front door" through which properly authorized government officials could readily decrypt To convert secretly coded data (encrypted data) back into its original form. Contrast with encrypt. See plaintext and cryptography. intercepted messages for reasons of law enforcement or national security. The proposal ignited a firestorm of protest from large segments of the computer community. Since then, angry debate over this issue and the more general question of privacy in an electronic age has dominated discourse on many electronic bulletin boards, where individuals can post their queries and opinions on a smorgasbord of concerns. "Not everybody is saying this is terrible, terrible, terrible, but nobody is happy about it," Walker says. The list of dissatisfied parties ranges from major computer manufacturers and telephone companies to privacy activists belonging to organizations such as the Electronic Frontier Foundation See EFF. (body) Electronic Frontier Foundation - (EFF) A group established to address social and legal issues arising from the impact on society of the increasingly pervasive use of computers as a means of communication and information distribution. and Computer Professionals for Social Responsibility Computer Professionals for Social Responsibility - (CPSR) A non-profit organisation whose mission is to provide the public and policymakers with realistic assessments of the power, promise and problems of Information Technology and the effects of computers on society. , The administrations scheme has also attracted congressional scrutiny and focused attention on the need to formulate a coherent national cryptographic policy. Many see the resolution of privacy issues as one of the key elements in developing a national information infrastructure, which would allow anyone using a networked computer unprecedented access to libraries, data repositories, and other information sources throughout the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. . "Recent years have seen a succession of technological developments that diminish the privacy available to the individual," Diffie stated last month in testimony before the House science subcommittee. "Cryptography is perhaps alone in its promise to give us more privacy rather than less. But here we are told that we should forgo this technical benefit and accept a solution in which the government will retain the power to intercept our ever more valuable and intimate communications." For many decades, cryptography remained largely a government matter an arcane discipline of interest to military organizations and to the secretive National Security Agency (NSA NSA abbr. National Security Agency Noun 1. NSA - the United States cryptologic organization that coordinates and directs highly specialized activities to protect United States information systems and to produce foreign ), which routinely monitors foreign communications. But the subject also captured the attention of a few enthusiasts outside government. ln the 1970s, the development of electronic communication via the first national computer networks spurred these people to look for ways to protect information in this new, wide-open environment. In 1975, Diffie, working with computer scientist Martin E. Hellman of Stanford University Stanford University, at Stanford, Calif.; coeducational; chartered 1885, opened 1891 as Leland Stanford Junior Univ. (still the legal name). The original campus was designed by Frederick Law Olmsted. David Starr Jordan was its first president. , invented a novel, revolutionary cryptographic technique now known as public-key cryptography public-key cryptography - public-key encryption . Developed entirely outside of government, it offered a high level of security and privacy to any individual using the system. In conventional cryptographic schemes, the user typically has a "key" that changes all the digits of a message into an unintelligible string. The recipient then uses the same key to unscramble Same as decrypt. See scramble. the code and read the message. In a public-key system, the user has one key - kept secret -- for encrypting the message and the recipient has a different but mathematically related key to decrypt the message. There's no need to keep the second key secret because, in principle, there should be no way to figure out the private-key from knowledge of the public key Thus, everyone has a private key and a public key, which they can then use to encrypt or decrypt messages. Almost simultaneously, the U.S. government offered an alternative, single-key method, known as the Data Encryption Standard See DES. Data Encryption Standard - (DES) The NBS's popular, standard encryption algorithm. It is a product cipher that operates on 64-bit blocks of data, using a 56-bit key. It is defined in FIPS 46-1 (1988) (which supersedes FIPS 46 (1977)). (DES), for coding information. Although experts outside of government initially harbored suspicions that the NSA had deliberately weakened the scheme to make code-breaking easier, 15 years of concerted effort to find flaws have failed to turn up any serious problems. Many banks and other institutions now routinely use this technique to maintain the confidentiality and integrity of communications involving financial transactions and other matters. One of the first hints of something new in the works came early this year. Last fall, Walker heard about a new AT&T telephone equipped with a lightweight electronic device, based on DES, for turning a telephone signal into a digital stream of encrypted information. He ordered five of these secure telephones for his business. In January, AT&T representatives told Walker they could only loan him the telephones he wanted; something better would become available in April, they said. Walker noticed they no longer mentioned DES as the encryption scheme.: "So I knew there was something coming," Walker says. "But I didn't know what the details were." When the White House announcement finally came, the details caught just about everyone in the computer community by surprise. In essence, the proposed "key-escrow' technology takes the form of two specially fabricated, tamper-resistant integrated-circuit chips one, known as Clipper, for encrypting digital telephone signals and another, known as Capstone, for encrypting the output of computers. Information from any telephone or computer would pass through the chip to be encrypted, and a corresponding chip attached to the recipient's telephone or computer would decipher the message. However, the scheme is designed to include another key, divided into two parts, that when reconstituted will also unlock the message. The administrations plan is to deposit these pieces --unique to each chip -- in two separate, secure databases. The two pieces of a particular key would be released only to officials at such agencies as the Federal Bureau of Investigation Federal Bureau of Investigation (FBI), division of the U.S. Dept. of Justice charged with investigating all violations of federal laws except those assigned to some other federal agency. who are authorized to tap a particular telephone line. This technology improves "the security and privacy of telephone communications while meeting the legitimate needs of law enforcement:' the White House stated in announcing the Clipper chip. "The effect," says Diffie, "is very much like that of the little keyhole in the back of the combination locks used on the lockers of schoolchildren schoolchildren school npl → écoliers mpl; (at secondary school) → collégiens mpl; lycéens mpl schoolchildren school . The children open the locks with the combinations, which is supposed to keep the other children out, but the teachers can always look in the lockers by using the key" "Because the key-escrow chip enables lawful intercepts, the government for the first time in history is in a position to promote encryption without putting public safety at risk:' says Dorothy E. Denning Dorothy Elizabeth Denning (the daughter of C. Lowell and Helen Watson Robling on August 12, 1945) is an American information security researcher. She has published four books and 120 articles. , a cryptography expert at Georgetown University Georgetown University, in the Georgetown section of Washington, D.C.; Jesuit; coeducational; founded 1789 by John Carroll, chartered 1815, inc. 1844. Its law and medical schools are noteworthy, and its archives are especially rich in letters and manuscripts by and in Washington, D.C. "As a result of the government's efforts, 1 expect to see greater use of encryption and, consequently, greater protection of sensitive communications." Administration officials insist the Clipper-Capstone scheme is voluntary Initially, only certain departments and agencies of the government will be required to use it. But clearly, the administration hopes that various companies will start incorporating this technology into commercial products, at first to supply the government market and then to meet the security needs of businesses and private individuals. This approach puzzles many observers. "If you're not going to force it on people, then it's going to be largely irrelevant for the computer community," says Walker. "DES and RSA (1) (Rural Service Area) See MSA. (2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. [a public-key cryptosystem] are already so widely used in software versions that most users will not even consider converting to Clipper or Capstone, simply because of the additional hardware expense:' "Anyone who is seriously seeking to protect sensitive information will use alternative methods, either instead of or in addition to the Clipper-Capstone chips." he adds. That leaves the possibility that the government may eventually ban the use of certain types of cryptography, though officials presently deny any such intent. "Encryption is a technology that could be constrained legally in the same way that other technologies are constrained." Denning argues. "Congress should consider legislation that would impose such constraints." Debating the technical merits of the administration's proposal has proved tricky. Many of the details of scheme's implementation remain fuzzy, and the government has insisted on keeping secret the actual mathematical recipe, or algorithm, for generating the required keys. "It's very hard to assess something when you don't know Don't know (DK, DKed) "Don't know the trade." A Street expression used whenever one party lacks knowledge of a trade or receives conflicting instructions from the other party. what you're assessing," notes Lance J. Hoffman, a computer scientist at George Washington University George Washington University, at Washington, D.C.; coeducational; chartered 1821 as Columbian College (one of the first nonsectarian colleges), opened 1822, became a university in 1873, renamed 1904. in Washington, D.C. In contrast, the government made public the DES algorithm, giving cryptography experts a chance to examine and test the scheme thoroughly to vouch for vouch for verb 1. guarantee, back, certify, answer for, swear to, stick up for (informal) stand witness, give assurance of, asseverate, go bail for verb 2. its security. Developed secretly at the NSA, the new algorithm used for the Clipper and Capstone chips will receive no such scrutiny, The government's reluctance to release the algorithm stems from the possibility that some people might then use the algorithm without its accompanying key-escrow provision to create a formidable encryption scheme. "This is a powerful algorithm," says NSA's Clint Brooks. "You need some kind of control mechanism... to ensure the law-enforcement capability is preserved." The Clipper and Capstone chips also represent only one possible approach to achieving a reasonable balance between unconstrained privacy and the needs of law enforcement and national security, Silvio Micali Silvio Micali (born October 13 1954) is an Italian-born computer scientist at MIT Computer Science and Artificial Intelligence Laboratory and a professor of computer science in MIT's Department of Electrical Engineering and Computer Science since 1983. of the Massachusetts Institute of Technology Massachusetts Institute of Technology, at Cambridge; coeducational; chartered 1861, opened 1865 in Boston, moved 1916. It has long been recognized as an outstanding technological institute and its Sloan School of Management has notable programs in business, has proposed an alternative scheme - developed well before the Clipper chip announcement - that eschews complicated chips and special hardware in favor of a considerably more flexible, inexpensive software solution. Like the administration, Micali favors an approach that includes a cryptographic escape hatch Noun 1. escape hatch - hatchway that provides a means of escape in an emergency aeroplane, airplane, plane - an aircraft that has a fixed wing and is powered by propellers or jets; "the flight was delayed due to trouble with the airplane" in case of dire emergency "Scientists ought to be socially responsible." he argues. "We have to ask ourselves what would be the social impact of widespread cryptography." Micali has demonstrated that it's possible with his technique to transform any public-key cryp- tosystem into one that includes a provision for third-party access Third party access policies require owners of natural monopoly infrastructure facilities to grant access to those facilities to parties other than their own customers, usually competitors in the provision of the relevant services, on commercial terms comparable to those that would to encrypted information, if a court deems such access essential for reasons of law enforcement or national security He calls the transformed version a "fair" public-key cryptosystem. "The transformed systems preserve the security and efficiency o! the original ones:' Micali says. "Thus, one can still use whatever system [he or she] believes to be more secure and enjoy the additional property of fairness." But to many others, the real debate is not about the technical merits of the Clipper and Capstone proposals. "The fundamental issue that people are talking about is the question of whether people have a right to have privacy in a conversation ... something that cryptography can provide," says Ronald L. Rivest, a computer scientist at MIT MIT - Massachusetts Institute of Technology . Denning contends that it would be irresponsible for either government or industry to promote the widespread use of strong encryption An encryption method that uses a very large number as its cryptographic key. The larger the key, the longer it takes to unlawfully break the code. Today, 256 bits is considered strong encryption. As computers become faster, the length of the key must be increased. . "I do not believe our laws grant an 'absolute right' to a private conversation;' she says. But Rivest and others reject the notion that the public should have access only to cryptography that the U.S. government can decipher. They feel shut out of the government decision-making process that brought forth the Clipper chip. "I don't know anyone inside the government who is lighting for the average citizens protection here," Walker says. "It's the national security and law enforcement guys that are running the show, and the administration has bought in to their side." "I don't think we have a fair situation at all," he adds. "That's why I keep insisting we've got to have a national review involving... private citizens and private organizations." The administration already has an internal review of cryptographic policy under way This task force is supposed to have its final report ready by the end of the summer. In addition, earlier this month, the Computer System Security and Privacy Advisory Board, which advises the administration on matters of security and privacy, held a three-day meeting to hear public comments on a variety of cryptographic issues. Many people question the sudden rush to implement Clipper-Capstone, given the major ethical and constitutional questions at issue. "There hasn't been a serious public discussion," Hoffman says. "Nobody has been given enough time." Faced with such criticisms, the government now shows signs o! slowing implementation of its key-escrow plan until the scheme's ramifications ramifications npl → Auswirkungen pl have been studied further. At the same time, computer users already have access to chips and software incorporating DES or the RSA public-key cryptosystem. "For the first time in history. we have a situation in which individuals can use cryptography good enough that even governments can't read [the encrypted messages]:' Hoffman says. "That is a big change. The administration is ultimately going to have to address the issue of whether people can use their own cryptography and keep the keys secret themselves." |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion