ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Server decryption / signing (was RE: Encrypting RFC822 headers in S/MIME or PGP/MIME messages)

1998-09-29 11:19:48
from [Darren Harter] [Permanent Link] 
Adam,

The references you quote for CASM are extremely out of date.  First,  CASM
does not have anything to do with PKI issues as you URL suggests.  CASM's
sister project CLOUD COVER (members of which play an active part on the PKIX
working group) does that.  Secondly,  the CASM team are actively
participating openly and positively in this working group, and the CASM
architecture is compliant with the current draft specs.  Thirdly, DERA have
had NO involvement with developing the CASM Architecture.  Finally, CASM is
not a protocol. It is an architecture that supports multiple security
protocols and key management schemes in a flexible yet standardised way.

If you require more up to date information regarding CASM or CLOUD COVER, I
suggest you contact CESG direct.  See www.cesg.gov.uk for contact
information.

Regards,

Darren Harter
CASM Applications Development Manager,
CASM Programme Office
CESG
Work: dharter(_at_)cesg(_dot_)gov(_dot_)uk
Home: darren(_dot_)harter(_at_)bcs(_dot_)org(_dot_)uk, or 
darren(_dot_)harter(_at_)tesco(_dot_)net, or
darren_harter(_at_)hotmail(_dot_)com


-----Original Message-----
From: Adam Back <aba(_at_)dcs(_dot_)ex(_dot_)ac(_dot_)uk>
To: w(_dot_)ottaway(_at_)eris(_dot_)dera(_dot_)gov(_dot_)uk 
<w(_dot_)ottaway(_at_)eris(_dot_)dera(_dot_)gov(_dot_)uk>
Cc: ietf-open-pgp(_at_)imc(_dot_)org <ietf-open-pgp(_at_)imc(_dot_)org>; 
ietf-smime(_at_)imc(_dot_)org
<ietf-smime(_at_)imc(_dot_)org>
Date: Monday, September 28, 1998 06:54
Subject: Re: Server decryption / signing (was RE: Encrypting RFC822 headers
in S/MIME or PGP/MIME messages)



UK's DERA (Defense Research Agency) / GCHQ designed the CASM protocol
to allow snooping on sent and received email.

CASM is partly based on server encryption.  Bill works for DERA
(dera.gov.uk), so I am wondering if he is thinking of CASM in his
comments, in that some of his arguments are couched in terms of a
desire for mail snooping, while others were discussing server
decryption purely in terms of ease of deployment, and adding blanket
super-encryption, security and forward-secrecy for email that would
otherwise not be encrypted.

(CASM includes a form of GACK involving recomputing seed material, for
details see:

http://www.opengroup.org/public/tech/security/pki/cki/

)
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Server decryption / signing (was RE: Encrypting RFC822 headers in S/MIME or PGP/MIME messages), William Ottaway
Next by Date:  Re: Server decryption / signing (was RE: Encrypting RFC822 headers in S/MIME or PGP/MIME messages), Bob Jueneman
Previous by Thread:  Re: Server decryption / signing (was RE: Encrypting RFC822 headers in S/MIME or PGP/MIME messages), William H. Geiger III
Next by Thread:  Re: Server decryption / signing (was RE: Encrypting RFC822 headers in S/MIME or PGP/MIME messages), William Ottaway
Indexes:  [Date] [Thread] [Top] [All Lists]