----- Original Message ----- From: "Jonathan Regan" <[EMAIL PROTECTED]>
> [SNIP] Have these cards encrypted at about 128 bits, > where the government would really need to work to get into any of them > Now that is funny. 128 bit encryption is about as strong as > those paper cups you get at grimy MLM conventions (not > that I've been to any of those mind you. lol) ... Not sure what you mean here Jonathan, but those cups must be incredibly strong... or perhaps you are mistaken. A 128 bit key applied with a well designed encryption algorithm is still (practically) unbreakable. > Seriously though - I would love to see some sort of system > where the government (whatever one that may be) finds it very > difficult to redeem information about the people conducting > transactions within it. Pecunix has this! ALL sensitive data in the Pecunix database is encrypted with AES128 so even if someone walked off with all the database files they would have no luck at all. The encryption is done on a dedicated platform in as secure an environment as possible. Note though, if anyone happened to get the key, they could decrypt the data. There is NOTHING that is 100% secure, particularly when dealing with Governments who have enormous resources to apply... > Perhaps, some sort of software that uses > a strange one way algorithm to store data, so even if the servers > were hijacked and brought back to the labs, then the data would > be essentially unreadable ... If it was "one way encryption" there would be no point in storing the data anyway, you might as well throw it away, then you would have no records to hijack. Of course you would also have no account system or transaction record. > Is it possible to have such an "E-Gold like" system, with a > layer of encryption Absolutely, pecunix has this... > that makes the whole thing anonymous? > No court order on the face of the planet would help, because > the data would be unreadable etc. etc ... Careful, obscurity is not anonymity. Also remember that if the data is encrypted but can be decrypted (by you) for reading account history etc, then the court would simply demand that the data AND the key were handed over. Pecunix is built to allow customers to encrypt all their own transactions to their PGP key, so only the customer can ever decrypt the data. This means the court would need to subpoena the data from Pecunix and the key from the customer, and no other customer records would be compromised. We have not enabled this feature yet, but will wait to see how well customers manage with the other PGP integration on the Pecunix site. If a customer lost his PGP keys in the above scenario, the account would effectively be GONE. > Hmm - I wonder ... Indeed! Sidd. --- You are currently subscribed to e-gold-list as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s) via the web and shopping cart interfaces to help thwart keystroke loggers and common viruses.
