--- F R E N D Z of martian --- Hi frendz :-) Just faxed my MP again (via http://www.stand.org.uk/fax.php3) about the RIP (Regulation of Investigatory Powers) bill. Thought you might like to see my message (which consists mainly of someone else's scenario of how it might all go wrong) [Thanks Tony]. martian ....... Dear Ms Corston Thank you for your recent communication enclosing the RIP bill and associated documentation including the relevant Hansard debate reports - what I have read has been most enlightening but unfortunately as a director of a relatively new internet development company I am afraid I do not have time to read them in any great detail. However, I came across a critique of the RIP bill which I thought you might wish to comment on, given your previous eloquent and informed response to my earlier questions. I would be very interested to hear the government's line on a situation such as is outlined below. Sincerely Martin Cosgrave Director, AppDev Ltd ---8<--- Beginning of included text Suppose, just suppose, one is a PGP user. Suppose one writes out "Mary had a little lamb" a few times, and encrypts it to a newly invented key with no email address attached to it, a nameless public key that is not used for any purpose. Suppose one then deletes that key and its corresponding private key, and wipes any trace of them. Suppose one then sends copies of the encrypted message to a range of friends, who change it about here and there, and send it all over the place. Hundreds or thousands of emails consisting of a block of random meaningless characters. Suppose one receives such a message out of the blue, and the filth - sorry, police / MI5 / MI6 - turn up demanding decryption. What then? Neither sender nor receiver can decrypt the message. Will they be prosecuted and jailed? Is it possible one could send false PGP messages to people who don't even use PGP, and eventually get some of them in trouble because they cannot decrypt it? Is there not scope for serious mischief in this awful legislation, because the legislators and their advisers have no concept of the ways encryption operates, and the possibilities? I will take in as many encrypted messages as people care to send, preferably funny jokes. The more we send, the better. We should swamp the system with encrypted (or fake encrypted) messages, because it will not be an offence to send them. Soon enough, they will be forced to realise that when I send a PGP message, I do NOT include my public key in the encryption process, and so ONLY the addressee(s) (owner(s) of the public key(s) used) may be able to decrypt them. Then again, they may be false PGP messages. I won't be able to say which, and the recipients will not be able to decrypt them - or will they? Maybe there's some prior private arrangement that means the sender and recipient have a secret system (such as an agreed line-switching) that enables decryption after all, but which makes the message appear a false one? Geez, but there's going to be some grief over this. Here's my public key. All funny jokes welcome provided they are (a) funny and (b) PGPed! The good ones are stored for my book ........ -----BEGIN PGP PUBLIC KEY BLOCK----- Version: PGPfreeware 5.5.3i for non-commercial use <http://www.pgpi.com> Comment: PGP means Pretty Good Privacy mQGiBDa6XW8RBADuPVB3LfgYlosdoOOtwKjTJ/Hkk/Tf1CCRDkepkNoCFnxVU7je uV4I94TsFv7Y5ZP2qXMM56aM7ly47SVcQuWzQXuhV6erxTnRoDk3sUASRRuzBYC5 YyW0xxfWLYGu0ST7mW/e9c7SbEof7gwTYXvtOA2aXp+dmh9jMRL9NClNBQCg/3aU RWUVJnzYGNg0nRAynsVMbWEEANcRxas7IxnYbpohMynHtaqWD/3hkKGUWpB3pXb0 iGNzjtD4WeDUGjZMpjbcv5AB5ZtAIxBo2sN6kPhtFgOIam+qlNBR86CQnQVCnQWu nTLcsLamQ3vX/enhLjS0ZR7ATW/AS6hIKKIbITjtWFTbfYHJevPItVF/sO7qZTRA mpjeA/wNOAgovprLNjnUTheEpzFp5DhoPxzhSRiir2cLUoBAtYI5gB1lHgGgRR44 GMGdDinrnY/HqMKomgXMCYqpoSWjJxQo1XLeiuSdiricvDIATR+nFp4K+t9s2nDR rLx7cEOxtgKKU61sGyvh7vRoY+/6QOGrA2PgJN2z3XV1yGD0dbQlQ2hhcmxlcyBG LiBZb3VuZyA8Q1lvdW5nMTA5N0Bhb2wuY29tPokASwQQEQIACwUCNrpdbwQLAwIB AAoJEB3QEi5ZFXJBxQkAn0qY4pmh7C0u5E+N4WG3eAPMP4GzAKCnT435Ct2YP9ij dpgRWSdGCQUXaLkCDQQ2ul1vEAgA9kJXtwh/CBdyorrWqULzBej5UxE5T7bxbrlL OCDaAadWoxTpj0BV89AHxstDqZSt90xkhkn4DIO9ZekX1KHTUPj1WV/cdlJPPT2N 286Z4VeSWc39uK50T8X8dryDxUcwYc58yWb/Ffm7/ZFexwGq01uejaClcjrUGvC/ RgBYK+X0iP1YTknbzSC0neSRBzZrM2w4DUUdD3yIsxx8Wy2O9vPJI8BD8KVbGI2O u1WMuF040zT9fBdXQ6MdGGzeMyEstSr/POGxKUAYEY18hKcKctaGxAMZyAcpesqV DNmWn6vQClCbAkbTCD1mpF1Bn5x8vYlLIhkmuquiXsNV6TILOwACAggAy+Rtq+5T yKbIqqlNtSGVjx9E5/yQKfq0jTET67o7fogvjlr96VlrsxfbQuzVaRvxM09LaXbO 8WaBnnLZ0EycuitiENCIC34GXeLZQjYWAbPLIlle7fHo1SS2XxPcVHoV4eZViQwc qhRaPNCvdOEr4zjM+XtW+mRZ2/hZIZ7b2rpj1yr6CiF6ut0TF8+sG5fozw/J4+71 NOqh5Mf/hILBgb/vKbIHaoiauzhxiV6AXxPxnGzWXUJUrUKQKQjR0KVZlaSm58xu ph1GRIlSMG8oda6+c3VbvePsLHrIYc7UpuA9SEmh87tHb8Ia3cP1sNVltTMaWLVV iFKF/GGT6f5ZEIkARgQYEQIABgUCNrpdbwAKCRAd0BIuWRVyQTQ9AJ0QUK+98GRi gZyA/WeZct5CMetcEACfTtbFxIfql99/o+qK4PevDLmlFo4= =Y2QI -----END PGP PUBLIC KEY BLOCK----- Charles Young Scotland UK [EMAIL PROTECTED] ---8<--- End of included text -- Sent to you via the frendz list at marsbard.com The archive is at http://www.mail-archive.com/[email protected]/
