. Canada appears to be yielding to
pressure from the U.S. It's not clear whether this affects the
exemptions that Canada has traditionally had for public-domain and
"mass market" (their term) software.
--
------
Ma
I've been (repeatedly) attempting to repel a sales droid from ARCOT, who wants
to sell me their "cryptographic camoflage" product. I reviewed their IEEE
paper again, and I'm still unimpressed with this stuff.
In a nutshell, the security of the product lies in keeping the public exponent
The Thawte folks are busily promoting their "SuperCerts" which enable
128-bit
symmetric modes in "International" versions of the various browsers.
I guess I've been out of touch--is there an extension in web certs that
enables
better than 40-bit symmetric SSL modes? My assumption has always
Radia Perlman - Boston Center for Networking wrote:
So since Thawte is advertising this, there must be a new version of
IE and Netscape that recognize Thawte as an issuer of step-up certs.
Which must mean that the US govt has approved Thawte (so that they
allow export of browsers that
David Honig wrote:
You have just reinvented the stuff TEMPEST tries to fight -
van Eck monitoring. Monitors, RS232 lines, and PC busses
have been found to radiate well.
A while back someone on cypherpunks posted a program that would let you
hear FSK modulation on a normal radio when the
most users will just
blindly accept. Netscape gives you a couple of options here--accept
the site cert for this session only, or accept it forever; I expect lots
of users will choose "forever", since that's simpler.
--
-------
Attached is an reminder about the SAC 99 workshop.
--
--
Marcus Leech Mail: Dept 8M70, MS 012, FITZ
Systems Security Architect Phone: (ESN) 393-9145 +1 613 763 9145
Security
Has anyone considered experimenting with DPA (Differential Power
Analysis), but
using spectral data, instead of power consumption?
Different operations will produce different EM spectra, and so the
attack
should work, given suitable selection of frequency range. This could
potentially
