On Fri, 3 Sep 1999, Tim Dierks wrote:
> Even if the key belongs to the NSA, I suspect that the NSA just wanted to be
> able to load classified Crypto Service Providers into Windows and didn't
> want to have to send said classified software to Microsoft for approval, so
> they got the key installed so they could approve software in house.
Classified crypto is done in secure hardware. Any hypothetical CSP's the
NSA needs to install on their own machines would not contain classified
algorithms. Hence the NSA could submit them to Microsoft for signing.
I am afraid the NSAKEY in CAPI has a different purpose than allowing the
NSA to secure their own communications.
-- Lucky Green <[EMAIL PROTECTED]> PGP v5 encrypted email preferred.
