The State of the World in

innocentsickAI and Robotics

Nov 21, 2013 (3 years and 7 months ago)

50 views

Who’s watching your network

The State of the World in
Cryptography

Jon Callas

CTO, Total Network Security

MacCrypto, 6 October 1998

Who’s watching your network

The Social Landscape


Crypto is a new technology


New Technologies are scary to governments


Our goal is to get them to follow the law


These things take time

Who’s watching your network

Government Changes


Relaxation on 56
-
bit crypto


Sector relief for


Corporations


Health Care


Financial Institutions


This is a good thing!


“Of course, we want more…”

Format B2

Who’s watching your network

Government Changes


Magaziner admits current policies are daft


Congress dithering but moving slowly

Who’s watching your network

AES


Replacement Algorithm for DES


128
-
bit blocks


Keys in 128, 192, 256 bits


http://www.nist.gov/aes/


15 Candidate Algorithms


Some already known to have flaws


CDs available!

Who’s watching your network

AES…


Process


Public Comments now


Second AES conference March 22 in Rome


Field narrowed to 5 in April


Final selection in mid
-
late 2000


NSA in the background

Who’s watching your network

AES…


My bets for the final five (in amphibolic order)


Twofish (Best initial paper)


Serpent (Best overall design)


Rijndael (Cool, fast, genetically different)


RC6 (Most elegant)


MARS (Star
-
studded IBM cast)

Who’s watching your network

Industry Initiatives


Intel grumpy with France


Intel does $4B electronic business/year


Intel needs strong crypto


No crypto, no e
-
business

Who’s watching your network

Industry Initiatives


Paper Exemption


Developed by PGP, Inc.


Used by NAI and EFF

Who’s watching your network

Industry Initiatives


Clear Zone, a.k.a. Private Doorbell


Initiative for export of non
-
end
-
to
-
end systems


Supported by 11 companies

Who’s watching your network

Threats


Terrorism


Export is now harder because of Africa
Bombings, Chinese satellite incident, etc.


Wassenaar Agreement


33
-
country agreement on “dual
-
use” items


Exemption for mass
-
market software


Techies’ Distaste for Politics


Also panicky jumping into situations

Who’s watching your network

Heretical Conclusion


Cryptographers have made unpickable locks


Heresy, and over
-
simplification:


No one wants unpickable locks


Unpickable locks are only useful for locking
things of no value


Lose your keys, lose your car


What about crypto
-
video or CD collections?


This is the #1 problem in cryptography