[governance] NSA sabotage of Internet security standards

Norbert Bollow nb at bollow.ch
Mon Sep 16 07:03:37 EDT 2013 

Suresh Ramasubramanian <suresh at hserus.net> wrote:

> Participate.
> http://bits.blogs.nytimes.com/2013/09/10/government-announces-steps-to-restore-confidence-on-encryption-standards/?_r=0

That is a process of the US “*National* Institute of Standards and
Technology” (my emphasis).

I would suggest that before it becomes appropriate to call
international civil society to participate in a review process for
crypto specs, a review process needs to be created that is credibly
committed to an international public interest objective!

Greetings,
Norbert


> On 15-Sep-2013, at 10:56, parminder <parminder at itforchange.net> wrote:
> 
> > On the Cryptography mailing list, John Gilmore (co-founder of
> > pioneering ISP The Little Garden and the Electronic Frontier
> > Foundation; early Sun employee; cypherpunk; significant contributor
> > to GNU/Linux and its crypto suite; and all-round Internet
> > superhero) describes his interactions with the NSA and several
> > obvious NSA stooges on the IPSEC standardization working groups at
> > the Internet Engineering Task Force. It's an anatomy of how the NSA
> > worked to undermine and sabotage important security standards. For
> > example, "NSA employees explicitly lied to standards committees,
> > such as that for cellphone encryption, telling them that if they
> > merely debated an actually-secure protocol, they would be violating
> > the export control laws unless they excluded all foreigners from
> > the room (in an international standards committee!)." (emphasis
> > added)
> > 
> > http://boingboing.net/2013/09/08/firsthand-account-of-nsa-sabot.html
> > 
> > What does it say for the US staying as a neutral, global interest
> > protecting, venue for global governance of the Internet!
> > 
> > parminder 
> > ____________________________________________________________
> > You received this message as a subscriber on the list:
> >     governance at lists.igcaucus.org
> > To be removed from the list, visit:
> >     http://www.igcaucus.org/unsubscribing
> > 
> > For all other list information and functions, see:
> >     http://lists.igcaucus.org/info/governance
> > To edit your profile and to find the IGC's charter, see:
> >     http://www.igcaucus.org/
> > 
> > Translate this email: http://translate.google.com/translate_t


-------------- next part --------------
____________________________________________________________
You received this message as a subscriber on the list:
     governance at lists.igcaucus.org
To be removed from the list, visit:
     http://www.igcaucus.org/unsubscribing

For all other list information and functions, see:
     http://lists.igcaucus.org/info/governance
To edit your profile and to find the IGC's charter, see:
     http://www.igcaucus.org/

Translate this email: http://translate.google.com/translate_t

More information about the Governance mailing list