Crypto-Log: Internet Guide to Cryptography

"LAWFUL USE OF ENCRYPTION.-It shall be lawful for any person within any State of the United States... to use any encryption, regardless of encryption algorithm selected, encryption key length chosen, or implementation technique or medium used...
except as provided in this Act... or in any other law."

-- Senate Bill S.1587 - The Encrypted Communications Privacy Act
introduced 5 March 1996 by Sen. Leahy (D-VT) and Rep. Goodlatte (R-VA)
details & analysis available from Electronic Privacy Information Center
and Voters Telecommunications Watch

The Main Page:
CRYPTO•LOG TM
The Internet Guide to Cryptography

Updated Friday 29 March 1996

WELCOME PAGE | FEEDBACK | DISCLAIMER | COPYRIGHT

Table of Contents:

Algorithms & Mathematics for Cryptography
Archives (FTP & WWW servers of documents, programs & source code)
Bibliographies, Periodicals, E-Journals, Books, Databases, Internet Searchers
Calendar (conferences, meetings, workshops)
Disk & File System Encryption (SFS, Secure Drive, etc.)
Key Escrow (Clipper & "GAK")
Laws & Regulations (ITAR, export issues, etc.)
Links to introductions and personal pages on cryptography
Network & Internet Security (SSL, SHTTP, Kerberos, etc.)
Newsgroups, FAQs and Mailing Lists
Organizations: Academic, Commercial, Government, Policy, Technical & Professional
Policy Discussions (see also: Policy Organizations, Laws & Regulations, Key Escrow)
Protocols & Standards (IETF, )
Software (products, programs and source code; PGP, IDEA, etc.)
Steganography (hiding information within noise)
Voice Encryption (telephone security, wiretapping threats)
Vulnerabilities (risks, defects, hacks and cracks)

Algorithms & Mathematics for Cryptography - under construction

Tatu Ylönen's Comments on Cryptographic Algorithms gives excellent summaries of algorithms in current use
Prof. Ron Rivest's links to many cryptography research sites
Terry Ritter's papers on Dynamic Substitution and Dynamic Transposition ciphers
thesis on data-compression & MPJ, DOS-wipe, PGP utils
archives of preprints on mathematical K-Theory
Colloquium at Univ. of Carleton, Canada
DES source code
DIMACS Seminars on Complexity Theory & Cryptography (1991)
Random Numbers:
- crypto-quality pseudo-random numbers, by Ian Goldberg and David Wagner, CS students at UC Berkeley who cracked the PRNG in Netscape's SSL
- Carl Ellison's pages on Random Number Conditioning Routines 21 Nov 1995
- Internet RFC 1750 - Randomness Recommendations for Security, by Eastlake, Crocker, and Schiller; Dec 1994
- "Truly Random Numbers" by Colin Plumb (Dr. Dobbs Journal, Nov 1994) discusses the RNG he helped devise for PGP
Cryptography Policy & Algorithms Conf, Australia (July 95)
cryptology research at University of Cambridge
links to math resources
elliptic curve cryptography - crypto applications of modular elliptic functions:
- Steve Albrecht released a portable public-domain implementation of Mike Rosing's elliptic curve PK cryptosystem; alternate FTP site
- Curve Encrypt program for Mac - FTP version 2.2 from .dk or .it
quantum cryptography - use of quantum indeterminacy for encryption & data security:
- Bibliography on Quantum Cryptography by Gilles Brassard: ~100 entries, May 1995
- Laboratory for Theoretical & Quantum Computing (Université de Montréal, Canada)
- Quantum Information page by John Smolin - covers recent work in quantum computation (Dec 1995)
- quantum cryptography research at Oxford
- quantum info/crypto
wavelets used for data compression might also have applications in cryptography
Sandy Harris proved 2 lemmas to Fermat's Theorem which may be useful in RSA factorization:
- i^(p^n) == i mod p; where p is prime, i and n are integers
- i^(n^s) == i^(n^3) mod s; where s is a strong prime, s=2r+1, r prime
files on factorization at Oxford in .uk include:
- Cunningham Project - a database of the primitive factorizations of integers of the form b^n + 1 and b^n - 1, for b = 2,3,5,6,7,10,11,12
- tables of primes and pseudoprimes
- freeware distribution of Lenstra's Large Integer Package
- historical relics of project to factor the RSA-129 challenge
see also: Academic Organizations, Bibliographies, Conferences, Protocols, Software.

Archives (FTP & WWW access to documents, programs & source code)

Cypherpunks File Archives (sites are not exact mirrors):
- at UC Berkeley via WWW or FTP (Sameer Parekh)
- at Carnegie-Mellon Univ. via WWW (Vince Cate)
- at Univ. Washington via WWW (Matt Thomlinson)
- in Finland via FTP or WWW
- see also: Cypherpunks/Coderpunks Mailing Lists
Australia: ftp.psy.uq.oz.au/pub/Crypto
Canada: ftp.wimsey.bc.ca
Canada: clipper.uvic.ca
Croatia: pgp.rasip.fer.hr/pub/crypt
Denmark: ftp.datashopper.dk/pub/users/pethern
Finland: ftp.funet.fi/pub/crypt
Finland: garbo.uwasa.fi/pc/security/
Finland: Tatu Ylönen's page of international links
France: www.cnam.fr/Network/Crypto/
Germany: ftp.darmstadt.gmd.de/pub/crypto
Germany: ftp.informatik.uni-hildesheim.de/pub/security
Germany: ftp.uni-stuttgart.de/pub/doc/security/crypto/
Germany: http://www.thur.de/ulf/krypto/index.html
Germany: Univ. of Hamburg: PGP archive, Cryptography archive
Germany: www.cert.dfn.de/eng/ (German Computer Emergency Response Team)
Hungary: ftp.kfki.hu/pub/packages/security
Italy: ftp.dsi.unimi.it/pub/security/crypt - one of the largest; check here first
Netherlands: utopia.hacktic.nl/pub/replay/pub/disk
Norway: ftp.unit.no/pub/unix/security
Russia: ftp.kiae.su/unix/crypto
Sweden: ftp.sunet.se/pub/security/tools/crypt
UK: ftp.ox.ac.uk/pub/crypto - one of the largest; check here first
USA: Michael Johnson's cryptography archive at CSN (Colorado SuperNet) - PGP, SFS, SecDev, etc. (export controlled); one of the largest; check here first
USA: EFF Crypto Tools Archive: via WWW or FTP
USA: Riordan's archive: very large collection incl. RIPEM, DES, multi-precision arithmetic
USA: ftp.infonexus.com/pub/
FTP Search - searches a database of ~3000 large FTP sites for the filename or directory you specify; a good way to find FTP sources for a file if you know its name

Bibliographies, Periodicals, E-Journals, Books, Databases, Internet Searchers

Bibliographies:
- Lawrie Brown's Cryptography Bibliography ~800 searchable entries
- Computer Science Bibliography "Glimpse" Searcher yields ~500 hits on "cryptography" in a 290kb HTML file. Glimpse is a searcher front-end for the massive Computer Science Bibliography Collection (~500k entries!) at University of Karlsruhe (U.K. mirror site), which includes the following searchable bibliographies on cryptography:
  - Bibliography on Cryptography & Security - by Ron Rivest, 1570 refs., Feb 1996
  - Bibliography on Computational Number Theory - from Sandia Labs' Parallel Computing Laboratory; 162 refs., Sept. 1995
- Prof. Ron Rivest's bibliographies on Cryptography & Security and on Algorithms are included in the Computer Science Bibliography Collection (previous item), where they are easier to search online than the BibTeX files at Rivest's MIT site
- CTRS Cryptography Technical Reports Server (abstracts & links to ~20 reports)
- Sean Irvine's Cryptography Abstracts has 1400+ entries, with strongest coverage of work from the 1980's
- Douglas Stinson's Bibliography on Authentication Codes (~90 refs. Jan 1996)
- Douglas Stinson's Bibliography on Secret Sharing Schemes (~160 refs. Dec 1995)
- Cybanim (a developer of cryptographic software) provides:
  - "Crypto Quotes" - news bits from popular & technical press, Australian slant
  - "Crypto References" - brief cites to several hundred technical & academic papers
- CSIS' list of ~400 references on computer security
- COAST Security Archive holds abstracts & links to several hundred papers on computer security; ~20 cryptography papers in FTP archive; ~16 abstracts in cryptography
- Springer's Index to Lecture Notes in Computer Science, Vols. 500-1000 (which includes many of the Crypto and EuroCrypt conferences), yields 120+ hits on "cryptography"
- publications list of E.I.S.S. (European Institute for System Security, Univ. Karlsruhe, Germany)
- publications list of GRECC-LIENS group (Ecole Normale Supérieure, France)
- publications list of SCSI-ULB group (Brussels Free University, Belgium)
- publications list of SIRENE group (Univ. Hildesheim, Germany)
Periodicals (printed):
- Journal of Cryptology
- Designs, Codes and Cryptography
- Journal of Computer Security
- Data Security Letter from Trusted Information Systems, Inc.
- Byte Magazine's back-issue database yields 16 hits on "cryptography"
- List of 20+ Cryptography-Related Journals, Publishers & Bookstores (1993)
E-Journals (online newsletters):
- Cipher - newsletter of IEEE's Computer Society Technical Committee on Security & Privacy
- Computer & Communications Security Reviews (by Ross Anderson); FTP site
- CryptoBytes - newsletter from RSA Data Security, Inc.
- Intelligence Online - a paid-subscription newsletter on political & military intelligence; full-text search of back issues yields 22 hits on "cryptography" covering 1993 to present
- DM-Net - newsletter of SIAM's Activity Group on Discrete Mathematics
- EPIC Alert - newsletter of Electronic Privacy Information Center
- EFFector Online (from Electronic Frontier Foundation)
Books & Publishers:
- TitleBank of academic publishers lists 24 in-print books on "cryptography".
- Aegean Park Press publishes ~80 titles on cryptography.
- Applied Cryptography by Bruce Schneier; Wiley, 2nd. ed., 1995; major update of the primary reference on applied cryptography; errata and source code for several dozen algorithms are available; essential for programmers developing cryptographic applications
- Cryptography: Theory and Practice, by Douglas R. Stinson; CRC Press, March 1995; text on cryptography theory and applications, examples in pseudocode; see also Stinson's bibliographies on Secret Sharing Schemes and Authentication Codes
- PGP Source Code and Internals by Philip R. Zimmermann; MIT Press, 1995.
- Official PGP User's Guide by Philip R. Zimmermann; MIT Press, 1995.
- Building In Big Brother: The Cryptographic Policy Debate, edited by Lance J. Hoffman; Springer-Verlag, March 1995, $29.95, ISBN 0-387-94441-9.
- Springer-Verlag (New York) publishes proceedings of IACR conferences (Crypto, EuroCrypt, AsiaCrypt, etc.); many are out of print.
- BookWire Index - a comprehensive list of book publishers
Databases:
Internet Searchers:
- Yahoo's top-level list of general-purpose search engines, spiders, web crawlers, all-in-one searchers, etc.
- FTP Search - searches a database of ~3000 large FTP sites for the filename or directory you specify; a good way to find FTP sources for a file if you know its name
- STO's Internet Patent Search System

Calendar (conferences, meetings, and workshops on cryptography & related fields)

a large Calendar maintained by the UCL Crypto Group lists 100+ conferences on cryptography and computer security in 1996, including those sponsored by ACM, IEEE, Internet Society, IACR, IFIP, and many other organizations.
Hypercalendar of Cipher (newsletter of the IEEE's Computer Society Technical Committee on Security & Privacy) lists 60+ conferences on computer security.
major conferences on cryptography:
- 1996 Nov 3-7: AsiaCrypt '96; S. Korea; sponsored by IACR.
- 1996 Sep 23-27: 4th UK/Australian Int'l.Symposium on DSP for Communication Systems; Perth, W. Australia; sponsored by IEEE, CRC-BTN, IEE.
- 1996 May 30 - Jun 1: Workshop on Information Hiding; U. Cambridge, UK.
- 1996 May 18-23: ANTS II Algorithmic Number Theory Symposium II; U. Bordeaux, France.
- 1996 May 12-16: EuroCrypt '96; Zaragoza, Spain; sponsored by IACR.
- 1996 Apr 10-13: 4th Workshop on Cryptographic Protocols; U. Cambridge, UK.
- 1996 Feb 21-23: Workshop on Fast Software Encryption; U. Cambridge, UK.
- 1996 Jan 17-19: RSA Data Security Conference; San Francisco, CA.
- 1996 Jan-Jun: Programme on Computer Security, Cryptology & Coding Theory; Cambridge, UK.
- 1995 Jul 1-3: Cryptography Policy & Algorithms Conference; Queensland, Australia.
major conferences on computer security:
- 1996 Dec 9-13: 12th Computer Security Applications Conference; San Diego, CA; sponsored by IEEE Computer Society, ACM, ACSAC.
- 1996 Sep 23-24: Communications and Multimedia Security; Joint Working Conference of IFIP TC-6 & TC-11; Univ. Essen, Germany; sponsored by IFIP.
- 1996 Sep 16-19: New Security Paradigms '96; Lake Arrowhead, CA; sponsored by ACM-SIGSAC, US DoD, Aerospace Institute.
- 1996 Aug 31 - Sep 2: Int'l Workshop on Advanced Transaction Models & Architectures; Goa, India.
- 1996 Jul 22-26: 6th USENIX UNIX Security Symposium Focusing on Applications of Cryptography; San Jose, California; sponsored by USENIX Association.
- 1995 Dec 11-15: 11th Computer Security Applications Conference; New Orleans, LA; sponsored by IEEE Computer Society, ACM, ACSAC.
- see also: NIST Computer Security Events Calendar
major conferences on privacy and cryptography policy:
- 1996 Sep 16: Advanced Surveillance Technologies II; Ottawa, Canada; sponsored by EPIC and Privacy International
- 1996 Jun 24-26: Australasian Conference on Information Security and Privacy; New South Wales, Australia; sponsored by Australasian Society for Electronic Security and University of Wollongong; contact: Jennifer Seberry.
- 1996 May 9-11: Visions of Privacy for the 21st Century: A Search for Solutions; Victoria, British Columbia; sponsored by Privacy Commissioner for British Columbia and University of Victoria.
- 1996 May 6-8: IEEE Symposium on Security and Privacy; Oakland, CA; sponsored by IEEE.
- 1996 Mar 27-30: CFP'96: 6th Conference on Computers, Freedom & Privacy; MIT, Cambridge, MA; sponsored by MIT, ACM, and WWW Consortium.
- 1996 Apr 18-20: Conference on Technological Assaults on Privacy; Rochester Institute of Technology, Rochester, NY; Contact Wade Robison.
- 1996 Feb 29 - Mar 2: Technologies of Freedom: Blueprints for Action; Washington, DC; sponsored by Alliance for Public Technology; contact Ruth Holder.
- 1996 Feb 7-8: Security, Privacy and Intellectual Property Protection in the Global Information Infrastructure; Canberra, Australia; sponsored by Australian Government and OECD.
- 1995 Sep 4: Conference on Advanced Surveillance Technologies; Copenhagen; sponsored by Privacy International.
- 1995 Jul 1-3: Cryptography Policy & Algorithms Conference; Queensland, Australia.
- 1995: audio tracks (WAV files) of CFP'95 conference.

Disk & File System Encryption

disk encryption for "on-the-fly" encryption of an entire disk partition:
- Peter Gutman's SFS Secure File System - a DOS device driver that uses SHA in feedback mode; alternate FTP site in .nl
- Edgar Swank's SecureDrive - a TSR hook for DOS that uses IDEA; available by FTP from CSN (get disk/secdr14a.zip), Cypherpunks archive, or sites in .nl, .dk, and .it
- Secure Device - a DOS device driver that encrypts a virtual, file-hosted volume with IDEA
- Matt Blaze's CFS Cryptographic File System - a UNIX device driver that uses DES; source code in files cfs112.tar.gz and cfs.1.3.shar.gz
- Will Price's CryptDisk - shareware Macintosh encryption system using IDEA-CFB (v.1.2.1 Jan 1996); available from FTP sites in U.S., another U.S., .dk, and .nl; older versions available by FTP from .ie (v.1.2) and .de (v.1.03); source code available
- Kent Marsh's FolderBolt for Mac (?)
file encryption for manual encryption of individual files:
- use PGP with the -c option
- Kent Briggs' Puffer 2.0 for Windows encrypts files and email using PC1 (a 40-bit stream cipher similar to RC4) in the shareware version, or the 160-bit Blowfish block cipher in the registered version; data-compression and file wiping options included
- HPACK incorporates strong encryption with a file-archiver (like PK-ZIP) for many platforms
- Diamond Lock v.2 for DOS & UNIX, with source code; older version here
- Encryptlet - an AppleScript droplet that encrypts files by drag-and-drop onto a Desktop Encryptor icon; cryptographically agile, can use AppleScript-aware version of MacPGP
- TeamWARE Crypto - commercial product for on-the-fly encryption of single files via FEAL-8 cypher; user interface is integrated with Windows File Manager
- Curve Encrypt (Mac) - version 2.2 available by FTP from .dk and .it
- Quicrypt (DOS) - need info?
- Atbash2 (DOS) - ZIP'ed file available by FTP from .dk and .it
file-wipe utilities overwrite deleted files to prevent their recovery; see Galacticus' Anonymity, Privacy, and Security pages

Key Escrow - Clipper and "GAK" (government access to crypto keys)

NIST's proposed export criteria for encryption software
key escrow
notes on NIST/NSA Sept 6 key-escrow workshop
notes on NIST/NSA GAK scheme
notes on NIST/NSA GAK scheme
Rivest's Alternative to key escrow: "Translucent Cryptography"
EFF Archive on Clipper and other key-escrow policy issues
EPIC released FBI documents on gov't. strategy to ban non-escrowed encryption
Bert-Jaap Koops' Crypto Law Survey covers 30+ countries
see also: Policy Organizations, Policy Discussions

Laws & Regulations (ITAR, export issues, etc.)

NEWS FLASH: Senate Bill S.1587 (the Encrypted Communications Privacy Act), introduced 5 March 1996 by Sen. Leahy (D-VT) and Rep. Goodlatte (R-VA), *appears* to affirm Americans' rights to use cryptography of their own choosing, and to *not* use key escrow systems. But VTW points out that Rep. Goodlatte introduced "the fatal amendment that made the House version of the Telecomm Bill [Communications Decency Act] unsupportable"; and EPIC's analysis warns of "unnecessary and potentially dangerous provisions" in S.1587:
- "sets out the first criminal penalties yet proposed for the domestic use of encryption"
- "does little to roll back the deployment of Clipper-inspired key-escrow encryption"
- "does not go far enough in removing antiquated controls on the export of encryption technology"
NEWS FLASH: U.S. State Department ruling amends ITAR to create an exemption for the "temporary export of cryptographic products for personal use," effective 16 Feb 1996.
International Crypto Law Survey by Bert-Jaap Koops covers ~30 countries
U.S. ITAR Regulations full text (130+ pp.) from Federal Register v.58, #139
U.S. Arms Export Control Act (22 U.S.C. 2778): ~60 full-text excerpts from U.S. Code Online (Internet Law Library); this is the law under which ITAR was created
U.S.: EPIC's Cryptography Policy Page covers news and analysis
U.S.: documents on crypto export issues are archived by John Gilmore and by EFF
U.S.: saga of Phil Karn's request to export Bruce Schneier's Applied Cryptography book & disk
U.S.: GPO Access - searchable full-text of U.S. Code, Federal Register, Congressional Record, legislative calendars, etc., from U.S. Government Printing Office
Australian Crypto Regulations - review by Matt Gream (Jan 1995)
Belgian Government plans to restrict Encryption - report on legislation passed 21 Dec 1995
Canadian Cryptography Export Controls
European Governments Agree to Ban Strong Crypto - Council of Europe agreed (8 Sep 1995) to outlaw unescrowed strong encryption, per Communications Week Int'l. #151, reported by Ross Anderson's Risks Digest v17 #36
Reports by Stuart A. Baker (former NSA Chief Counsel, now in private law practice):
- Summary of OECD Ad Hoc Meeting of Experts on Cryptography (Jan 1996) - reports "The bad news for U.S. policymakers is that there is little appetite in Europe (let alone Japan) for direct regulation of the encryption market."
- Emerging Japanese Encryption Policy - reports "signs that encryption is seen as a key technology for improving Japan's penetration of the Global Information Infrastructure."
Michael Froomkin (Assoc. Prof. at Univ. of Miami Law School) reports on cryptography, remailers, e-cash, and the internet.
see also: Policy Organizations, Policy Discussions

Links - to more cryptography resources:

basic introductions:
- Introduction to Cryptography by Tatu Ylönen is a good intro to crypto technology
- Cryptography, PGP, and Your Privacy by Francis Litterio, from the WWW Virtual Library is a practical introduction for getting started with crypto applications
- CypherNomicon by Tim May is a long (400 KB) rant on the political/social benefits of privacy, anonymity and data security (May 1994); another copy, another copy
- see FAQ
personal pages:
- Prof. Ron Rivest's home page at MIT
- Shortcut to Cryptography
- Pat Farrell's page
- Sherry Mayo's page has an excellent description of How PGP Works
- John Gilmore's home page
- Pat Finnerty's page on running PGP under DEC/VAX/VMS
- David Wagner's page on randomness sources, with many links
- Joel MacNamara's page on cryptography & computer privacy
- Mohan's page of links to crypto resources; another URL
- Derek Bell's page w/ some crypto links
- cryptography related documents
- Vince Cate's Cypherpunk jump list
- misc. cryptography links

Network & Internet Security

SSL (Secure Sockets Layer for TCP/IP): SSL v3.0 specification, Netscape's overview
SSLeay & SSLapps FAQ - free SSL implementation without crippled encryption; FTP site
SSLP Project
Tom Ruess' list of 100+ sites on internet security; Ruess is implementing a secure web browser/server by splicing SSL (with strong crypto from non-US sources) into NCSA's XMosaic
SHTTP Secure Hypertext Transfer Protocol
internet security
Lance Cottrell's page on remailers & net security
Vasco Data Security time-phased password device
Mosaic: search for "encryption" in all files at NSCA's MOSAIC site returns 54 hits
review of public-key certification schemes by Carl Ellison (1 March 1996)
S/KEY Internet Draft for Bellcore's 1-time password system; FTP archives Bellcore and at first.org
document-marking for security
Computer & Communications Security Reviews (by Ross Anderson); FTP site
SSH (Secure Shell) - secure UNIX rlogin, rsh, rcp; FAQ, binaries v1.2.12
FAQs on sniffers, anonymous FTP & intruder-detection in UNIX
FAQs on Firewalls & Internet Security by Marcus Ranum (V-One Corp.)
Kerberos (network user-authentication protocol): FAQ, newsgroup, programs & source code avail. at FTP sites in .us and .nl
Cygnus Network Security system based on Kerberos
SESAME - an enhanced public-domain version of Kerberos; can replace Kerberos in DCE; an ECMA standard; Internet drafts are filed to progress it to an RFC (Feb 1996)
Security Bug in Kerberos 4.0 reported by 2 Purdue students; caused by inadequate RNG operation; similar to the Netscape Crack by CS students at UC Berkeley in fall 1995
"Decentralized Trust Management" - paper by Matt Blaze (with Joan Feigenbaum and Jack Lacy) on alternatives to traditional (X.509, PGP, etc.) identity-based certificates, to be presented at the Oakland Security Conference in May 1996
MOSS (MIME Object Security Services) is a proposed Internet Standard (RFC 1847 & RFC 1848, Oct 1995) for adding Privacy Enhanced Mail services (encryption and authentication) to MIME e-mail; developed by Trusted Information Services with ARPA funding; UNIX source code is available; performs similar services as Zimmerman's PGP and RSA's S/MIME
Decense - a new suite of Perl scripts (v0.10 alpha) which provides anonymous access to web servers, designed to defeat censorship of the net, released Feb 1996 by Ray Cromwell
SAIC Documents (from Science Applications International Corp.) on security of WWW servers, firewalls, TCP/IP protocols, etc.
see also: Protocols

Newsgroups, FAQs and Mailing Lists

sci.crypt | FAQ in US | FAQ in UK | archive
sci.crypt.research | archive
comp.protocols.kerberos | FAQs | archive
comp.risks | archive via FTP | archive via WWW
comp.security.misc | archive?
alt.security.pgp | FAQs by Jeff Licquia (May 1995) | archive?
talk.politics.crypto | archive?
Cypherpunks & Coderpunks Mailing Lists:
- Cypherpunks Mailing List
- Cypherpunks Mailing List Archive - all messages posted to Cypherpunks list from 1992 to present are machine-indexed by subject, thread, author and date
- NNTP to Cypherpunks - to read the Cypherpunks list as a newsgroup, point your NNTP newsreader at nntp.hks.net and read hks.lists.cypherpunks and hks.lists.coderpunks
- see also: Cypherpunks File Archives
cypher-list: a new (Jan 1996) PGP-protected mailing list on cryptography, crypto-politics & remailers; send e-mail with "help" or "lists" in your message body
PGPdomo is a PGP-protected version of the MajorDomo mail-list server; it decrypts incoming mail and encrypts outgoing mail with user's public keys
CRYPTO-L listserv on cryptology: contact Hiroki Shizuya, see also

Organizations, Academic (universities & institutes, in alphabetical order by country)

SCSI-ULB (Cryptography & Computer Security Section in CS Dept. at Brussels Free University, Belgium)
COSIC (Computer Security & Industrial Cryptography Group, EE Dept. of Katholieke Universiteit Leuven, Belgium)
Cryptology Group at UCL (University Catholoqie de Louvain, Belgium)
Laboratory for Theoretical & Quantum Computing (Université de Montréal, Canada)
GRECC-LIENS (Groupe de Recherche En Complexité et Cryptographie at Ecole Normale Supérieure, France)
LIX (Computer Science Laboratory at École Polytechnique, France) - computational number theory and algorithms (F. Morain, R. Lercier)
D.E.A. Algorithmique (France) - complexity, coding, and cryptography (J. Stern)
SIRENE (Security In Computer Networks Group, Univ. Hildesheim, Germany) - crypto applications in anonymity, authentication, and digital payment systems; mirror site at IBM Zürich
EISS (European Institute for System Studies, Univ. Karlsruhe, Germany) - TESS system of crypto primitives built on modular exponentiation; escrowed-key cryptography
Information Security & Cryptography Research Group (ETH Zürich, Switzerland)
Cryptography and Information Security Group (M.I.T) - founded by Profs. Goldwasser, Micali, and Rivest
CSIS (Center for Secure Information Systems at George Mason University) - security in large computer systems
NPAC (Northeast Parallel Architectures Center) - RSA factorization
UMBC-STRG (Security Technology Research Group at Univ. Maryland Baltimore Campus) - quantum cryptography & computation, net security
U. Mass Theoretical Computer Science Group - algebraic algorithms & complexity theory (S. Landau)
Computer Security Research Laboratory (Univ. California, Davis) - intrusion detection research sponsored by NSA, ARPA & LLNL
International Cryptography Institute and Prof. Denning's "Cryptography Project"
Network Systems Research Group (U. Arizona) - experimental study of protocols for end-to-end encryption in high speed networks
courses and seminars:
- Applied Cryptography Seminar at Princeton (spring 1995)
- LAP (Learning About Programming) - a cryptography course for 1st year CS students

Organizations, Commercial

IBM: SecureWay is IBM's line of security products and services for Internet and business applications, including cryptographic hardware & software, secure Internet browsers, servers, gateways and firewalls, and embedded cryptography for Lotus Notes.
- IBM and RSA announced (Jan 1996) a joint project to modify RSA's BSAFE encryption engine and IBM's Common Cryptographic Architecture (CCA) to allow applications developed with RSA's toolkits to access IBM's cryptographic hardware.
- Open Blueprint is IBM's grand architecture for distributed client/server computing, and includes a cryptographic security component
- IBM's Zurich Research Center is a mirror site for the European SIRENE group (Security Research in Computer Networks)
Math Works, Inc. - developer of general-purpose computational software (MatLab, signal processing toolkits, etc.)
MicroSoft:
- Microsoft CAPI (Cryptographic API) - enables Win32 applications to encrypt or digitally sign data using independent modules called cryptographic service providers (CSPs); announced Jan 1996, expected release in 1Q '96 for WinNT
- Microsoft PCT (Private Communication Technology) - Internet draft of Microsoft's "enhancements" to Netscape's SSL protocol for general-purpose encryption & authentication of internet messages released Oct 1995; PCTRef v1.0 Source Code for WinNT & Linux (released Jan 1996); more info from Microsoft
RSA Data Security, Inc. (RSADSI) - major developer/vendor of cryptography software:
- FAQ on RSA via FTP (current); FAQ on RSA (RSA draft v. 2.0, 20 Sep 1993)
- CryptoBytes is RSA's quarterly newsletter
- RSA Data Security Conference San Francisco (Jan 17-19 1996); major industry event
- RSA's PKCA Standards: S/MIME (Secure Multipurpose Internet Mail Extensions), others
Trusted Information Systems, Inc. (TIS):
- develops commercial key escrow systems
- compiles the Worldwide Survey of Cryptographic Products
- organized the International Cryptography Experiment (ICE) under DARPA contract, aiming to develop cryptographic application program interfaces (CAPIs) which "maintain national law enforcement and national security interests" and allow governments to "control the use and import/export of cryptography"
VeriSign, Inc. - developer of Digital IDs for electronic commerce; announced plans (Jan 1996) to incorporate Digital ID's into secure email programs from Banyan, ConnectSoft, Frontier, Netscape and Worldtalk
CRYPTOCard Corp. - user authentication tokens for network access control
see also: Protocols, Software

Organizations, Government

NSA (U.S. National Security Agency) official home page, original charter
- NSA unofficial home page from the Intelligence Reform Project of the FAS
- Security Handbook for NSA Employees
- TOP 500 - a list of the world's 500 most powerful computer systems; sites listed only as "U.S. Government" with no further identification are often assumed to be NSA
- NSA Contract Announcements - covers contracts over $10 million value awarded since Oct 1994 by US DoD Maryland Procurement Office (MDA-904), per DTIC's DefenseLink
- NSA's role in the federal High Performance Computing & Communications (HPCC) project includes building massively parallel computers and high speed networks; a terabit/second (10^12 bit-ops/sec) workstation was demonstrated in 1994
- Baltimore Sun's 6-part series on NSA (Dec 1995)
- NSA's 1992 response to questions from the Houston Chronicle
- The Eyes of Big Brother - a history of NSA's domestic activities
- Ex-DCI Joins Electronic Commerce Firm - Admiral (ret.) Wm. Studeman was elected 28 Feb 1996 to the Board of Directors of Premenos Corp., a vendor of software for electronic commerce. Studeman served in the government as acting Director of Central Intelligence, Director of NSA, and Director of Naval Intelligence.
- "Cryptography for High Speed Networking" by Wm. Semancik (NSA), presented at the ARPA HPCC Symposium (High Performance Computing & Communications, Mar 1994) reviews NSA-developed encryptors for government SONET/ATM links
- newsgroup: alt.politics.org.nsa
NIST (U.S. National Institute of Science & Technology) Computer Security Resource Clearinghouse
FAQ on NSA and NIST and their role in commercial cryptography, by RSA Data Security, Inc. (May 1995)
DARPA's Information Technology Office (ITO) sponsors computer research in many fields, including:
- International Cryptography Experiment (ICE) (contracted to Trusted Information Systems) aims to develop cryptographic application program interfaces (CAPIs) which "maintain national law enforcement and national security interests" and allow governments to "control the use and import/export of cryptography"
- electronic commerce products for use in military command & control systems
- high-speed encryption at rates of ~100 Gbps for network backbones, such as Secant Technologies' Key Agile Encryptor
- traffic analysis and capture in public telephone and ATM/SONET networks, using ATTILA, a system with "powerful wire tapping capability" that can "define filters (with wild card fields)" to "trigger the capture of traffic" between parties; the Enigma2 project uses ATTILA hardware for covert-channel detection
- the DARPA-ITO Project Summaries Broker reports 14 hits on "cryptography"
Federal Internet Security Plan (FISP) - defines Internet security requirements for federal agencies; from the Federal Networking Council's Privacy & Security Working Group
Collaborations In Security (CIS) - a group of federal agencies and contractors who collaborate in testing computer security hardware and software
NASA's Advanced Network Applications (ANA) project is creating a prototype for the U.S. Postal Service of a "national trusted messaging infrastructure" that requires "public-key identity certificates" for sending e-mail
CSE (Canadian Communication Security Establishment) - NSA's Canadian counterpart: official and unofficial home pages
NRL-ITD U.S. Naval Research Laboratory - Information Technology Division
Navy INFOSEC - U.S. Navy Information Security Program mission & organization
"Rainbow Books" online - DOD/NSA criteria for trusted computer systems
AJAX pointers to official home pages of ~80 military & government agencies (mostly U.S.)
FBI (U.S. Federal Bureau of Investigation) official home page
- DECA program (Development of Espionage, Counterintelligence & Counterterrorism Awareness) deals with economic, industrial, and technological intelligence gathering
- Above the Law is a new book (Scribner 1996) about the controversial surveillance activities and political agenda of the U.S. Justice Department & FBI
- Digital Telephony Initiative and CALEA (Communications Assistance for Law Enforcement Act of 1994) - FBI plan for automated surveillance of millions of phone lines
- newsgroup: alt.politics.org.fbi
GPO Access - searchable full-text of U.S. Code, Federal Register, Congressional Record, legislative calendars, etc., from U.S. Government Printing Office
U.S. Code Online - searchable full-text of U.S. Code from Internet Law Library
Government Privacy Commissions (not yet directly concerned with cryptography):
- Canada: Privacy Commissioner of Canada
- Canada: Information and Privacy Commissioner for Ontario - see especially "Privacy-Enhancing Technologies: The Path to Anonymity", a joint report of the Ontario Privacy Commissioner and the Registratierkamer (Netherlands) on techniques for adding identity protection to information systems (Aug 1995, ISBN 90 346 320 24); also available in WordPerfect 5.1 format
- Canada: Information and Privacy Commissioner for British Columbia
- New Zealand: Office of the Privacy Commissioner
- Norway: Data Inspectorate; more info here in Norwegian
- Switzerland: Data Protection Agency
- U.K.: Data Protection Registrar

Organizations, Policy & Public Interest

ACLU American Civil Liberties Union
CDT Center for Democracy & Technology on "Crypto Policy"; CDT's funding sources
CPSR Computer Professionals for Social Responsibility
CPT Consumer Project on Technology focuses on privacy issues
EFF Electronic Frontiers Foundation - Privacy & Crypto Archive, Legal Archive
EFC Electronic Frontiers Canada - defeated Bell Canada's attempt to trademark "The Net"
EFA Electronic Frontiers Australia
EPIC Electronic Privacy Information Center - Cryptography Policy Archive, Online Guide to Privacy Resources (text version)
FAS Federation of American Scientists' Intelligence Reform Project hosts the NSA unofficial home page; also compiles excellent annotated lists of online resources on:
- "Intelligence on the Web" (100+ links)
- Signals Intelligence & Communications Security (NSA, SIGINT & Cryptography)
- Information Warfare & Information Security
Privacy Enhancing Technologies - information (in Dutch) on privacy issues in Netherlands
Privacy International
Privacy Rights Clearinghouse
VTW Voters Telecommunications Watch
see also: Key Escrow, Laws & Regulations, Policy Discussions, Government-Chartered Privacy Commissions

Organizations, Technical & Professional

IACR International Association for Cryptologic Research
SIAM Society for Industrial and Applied Mathematics
- SIAM Journal on Computing
- SIAM Journal on Discrete Mathematics
- SIAM Activity Group on Discrete Mathematics
ACM Association for Computing Machinery
- ACM SIGACT Special Interest Group on Algorithms and Computation Theory
- ACM SIGSAC Special Interest Group on Security, Audit and Control
IEEE Institute of Electrical & Electronic Engineers
IETF (Internet Engineering Task Force) and the IETF Security Working Groups
W3C (WWW Consortium) and the W3C Security Group

Policy Discussions

newsgroup: talk.politics.crypto
A Cyberspace Independence Declaration by John Perry Barlow (Feb 1996)
Gilmore's archives on cryptography export issues
Vince Cate's CryptoRebel page
Pat Farrell's updates on cryptography policy
Eckweiler's NetLaw column on court-ordered disclosure of cryptographic keys
CFP 95 reports
Tim May's "Crypto Anarchist" Manifesto and essay on political implications of strong cryptography in the hands of citizens.
Dorothy Denning's response to the so-called "threat" of crypto-anarchy
U.S government's investigation of Phil Zimmerman and PGP http://www.c2.org/~arkuat/consent/Consent.html Toward a Consensual Society more on the by Eric Watt Forste
critique of Euro-Clipper
NIST/NSA key escrow discussions
Cryptography Policy & Algorithms Conference Queensland, Australia (July 95)
report on cryptography in Australia
Rodger Clark on cryptography policy in Australia
SURFPUNK archives 1993-94 era debates on crypto regulation; alternate site
see also: Laws & Regulations, Key Escrow

Protocols & Standards

standardized algorithms and cryptographic systems are the foundations for many higher-level security protocols:
- NIST FIPS Federal Information Processing Standards, including DES (Data Encryption Standard) and DSS (Digital Signature Standard)
- IDEA
- RSA PKCA Standards
- IEEE standards on public-key cryptography
- ISO/IEC JTC1/SC27/WG2 working group on cryptographic techniques
- IEEE Security & Privacy Committee
- Microsoft CAPI (Cryptographic API) - enables Win32 applications to encrypt or digitally sign data using independent modules called cryptographic service providers (CSPs); announced Jan 1996, expected release in 1Q '96 for WinNT
- IBM SecureWay - IBM's line of security products and services, includes a cryptographic security component in its Open Blueprint architecture
- 4th Workshop on Cryptographic Protocols Univ. of Cambridge, UK (10-13 April 1996)
internet security protocols:
- Internet Mail Consortium - association of companies (vendors of e-mail software, mail servers, online services, etc.) aiming to improve internet e-mail service
- Internet Mail Consortium's Security Workshop 21 Feb 1996; informal report
- SHTTP Secure Hypertext Transfer Protocol
- Microsoft PCT (Private Communication Technology) - Internet draft of Microsoft's "enhancements" to Netscape's SSL protocol for general-purpose encryption & authentication of internet messages released Oct 1995; PCTRef v1.0 Source Code for WinNT & Linux (released Jan 1996); more info from Microsoft
- Internet RFC 1170 - Public Key Partners' (PKP) statement on licensing of their 4 public-key cryptography patents
- Internet documentation
- Index to internet RFC documents
- IETF (Internet Engineering Task Force) and the IETF Security Working Groups
- W3C (WWW Consortium) and the W3C Security Group
PGP Internet Drafts:
- PGP Message Exchange Formats - Internet Draft (July 1995) by D. Atkins, W. Stallings, and P. Zimmermann
- Definition of X.500 Attribute Types and an object class to Hold public PGP keys - Internet Draft (September 1995) by Roland Hedberg
- MIME Security with PGP - Internet Draft (November 1995) by Michael Elkins
- PGP MIME Integration - Internet Draft (October 1995) by Kazuhiko Yamamoto
network security protocols:
- "Rainbow Books" online - DOD/NSA criteria for trusted computer systems
- Bellcore's S/KEY 1-time password standard
credit card protocols for encrypted internet transactions - the newest standard (SET) emerged from two now obsolete proposals (SEPP and STT) from competing camps:
- Secure Electronic Transactions (SET) - the new "open standard" announced 1 Feb 1996; supported by Visa, MasterCard, IBM, Microsoft, Netscape, SAIC, Terisa and Verisign; uses special RSA encryption technology; SET specification at VISA's site
- SEPP - from MasterCard
- Microsoft/Visa STT (Secure Transaction Technology) - specification updated Dec 1995; another STT link
digital cash protocols for secure electronic payments:
- NetBill
- CyberCash
- DigiCash b.v., developer of the "ecash" system
- Mondex
- First Virtual
- Millicent Protocol for Inexpensive Electronic Commerce
- NetMarket
- Mark Twain Bank
- Network Payment Mechanisms and Digital Cash review by Michael Peirce (Trinity College, Dublin)
- Digital Cash and Monetary Freedom essay on political/economic benefits of digital cash systems, presented by Jon Matonis at Internet Society Conference (Apr 1995)
see also: Network & Internet Security, Software

Software (products, programs and source code)

Applied Cryptography by Bruce Schneier; Wiley, 2nd. ed., 1995; a major update of the primary reference on applied cryptography; errata and source code for several dozen algorithms are available; essential for programmers developing cryptographic applications
CryptoLib 1.1 by Jack Lacy (AT&T Bell Labs) - library of primitives for building cryptographic applications; runs under Unix, DOS, and Windows 3.1, NT, and 95; source code available in US & Canada by e-mail request, or by FTP from sites in .it and .au
Crypto++ 2.0 - a free C++ class library of many cryptographic primitives, by Wei Dai (who also runs an experimental PGP-based Time Stamp Service)
Peter Gutman's CryptLib - a free "universal interface" in ANSI C to the major conventional-key (symmetric) algorithms (incl. code for MDC/SHS, DES, 3DES, IDEA, RC4, and SAFER), plus well-planned infrastructure for adding more
Cybanim produces cryptographic software and free info:
- SIFR, a PEM-style eMail Sign and Cipher; RSA or LUC public keys & tDES encryption
- Cryptographic Libraries (RSA, DH, DSA, Fiat-Shamir, GQ, ZK etc.)
- Kuttaka Large Integer Calculator - free DOS program; r^b mod c, Lucas Sequences, etc.
- "Crypto Quotes" - news bits from popular & technical press, Australian slant
- "Crypto References" - brief cites to several hundred technical & academic papers
DES (Data Encryption Standard):
- NIST FIPS Federal Information Processing Standards, including full text of DES and DSS
- DES source code FTP archive
- Phil Karn's list of books with DES Source Code
- DEScipher/VBX, a Visual Basic VBX wrapper to DES
IDEA (International Data Encryption Algorithm):
- Ascom, Ltd., owners of IDEA, are now licensing it for commercial use in USA
- IDEA source code FTP archive
Diceware for Passphrase Generation: Reinhold's papers and random word tables
Snefru hash function
MIRACL V3.3 (Multiprecision Integer & Rational Arithmetic C Library) - C code with C++ interfaces for manipulation of large fixed-length integers; uses in-line assembler for 80x86 processors; sample programs for modern factoring algorithms, public key systems, DSS, discrete logs; 82 pp. manual; free for non-commercial use.
Dynamic Substitution and Dynamic Transposition ciphers by Terry Ritter
IMD5 - an implementation of MD5 (message digest algorithm defined in RFC1321) via the "Component Object Model" (COM) within Microsoft's OLE system
MacIntosh cryptography software:
- PowerMac Cryptography Software - FTP site in .ie has PGP 2.62, PGP 2.63i, CryptDisk 1.2, etc.
- MacPGP 2.6.3 alpha release by Zbigniew Fiedorowicz; a Mac port of PGP 2.6.3; underlying crypto code is same as in PGP2.6.3i, except that it uses RSAREF1.0 instead of Zimmermann's MPILIB.
- Greg Combs' page on cryptography on the Mac
- Macintosh Cryptography Interface Project
PGP (Pretty Good Privacy) - Phil Zimmerman's public-key e-mail security system
- PGP U.S. home page (MIT) - information & programs (export controlled)
- PGP International Home Page
- PGP FAQs & tutorials are posted by Fran Litterio, Michael Johnson, Nat Queen, and Mathew.
- PGP Passphrase Selection FAQ by Randall Williams
- PGP Attacks FAQ - assessment of whether PGP is vulnerable to attack or compromise
- PGP Timeline FAQ - a concise history of PGP by Adam Back
- PGP documentation online in HTML and PostScript formats; covers MIT version 2.6.2
- PGP Source Code and Internals by Philip R. Zimmermann (MIT Press, 1995)
- newsgroup: alt.security.pgp, FAQs by Jeff Licquia (May 1995)
- ViaCrypt, Inc. distributes PGP software for commercial use
- code to test quality of PGP's IDEA session keys
- analysis of existing public-key infrastructure for PGP, by Neal McBurnett
- PGP 2.6.2 for WinNT & Win95 - a character-based (console) port of PGP 2.6.2 (US/Canadian version) that understands long file names; no source code; released 10 Feb by Chris Uhl & Chris Moran
- UK site with many pointers to PGP code and utilities
- see also: PGP Internet Drafts in the Protocols section
PGP Shells & Utilities - interface PGP to e-mail, file systems, networks, etc.
- a large page of links to PGP front-ends and shells for Windows, DOS, Unix, OS2, & MAC, maintained by Scott Hauert
- PGP interfaces for e-mail programs:
  - PgpEudra 0.20 - a PGP-shell that runs as an extension to the 16-bit Eudora versions
  - WinPMAIL - interface to Pegasus Mail (Windows)
- PGP interfaces for operating systems:
  - ProPGP - a free 32-bit PGP front end for Windows '95, v. 1 beta 1 released Feb 1996; supports most functions of PGP 2.6.2 including key operations, views files before/after encrypting/decrypting, encrypts data from clipboard.
  - WPGP home page and code (ZIP format)
  - PWRPGP10.ZIP (PGP shell for Windows)
  - Aegis 2.1 PGP shell for Windows
  - PGP QuickFront and PGP Winfront by Ross Barclay / Ugali Int'l Corp.
  - Pgpacket, Travel Web Page
- PGP-based time-stamp services attach a dated non-forgeable PGP signature to messages you submit:
  - Stamper - free service, run by Matthew Richardson
  - Wei's Time Stamp Service - also free, run by Wei Dei
RIPEM - Mark Riordan's Internet Privacy Enhanced E-Mail system
- Archives at Indiana Univ. and at MSU
- Frequently Asked Questions and Vulnerabilities
- newsgroup: alt.security.ripem | archive
CRYPT.SCM is a small library of cryptographic functions written by Ulf Möller in "Scheme". Scheme is an algorithmic language (written in C) defined by IEEE P1178, and runs under many OS's including DOS, OS/2 and Unix.
NOISE.SYS, a random-noise device driver for DOS; source incl., 386 req'd.
Ruby Block Cipher - a simple block cypher (although it cannot be used in Electronic Codebook mode) similar to a cryptographic hash function with a block size of 64 bits; more info
Python Cryptography Toolkit - free software (hash, en/decrypt, public-key, etc) for Python (an interpreted object-oriented language similar to Perl or Java) by Andrew Kuchling (Aug 1995); FTP site
CYPRIS (CrYPtographic RISc processor) - a coprocessor chip developed by Lockheed-Martin Advanced Technology Labs for DoD applications requiring "algorithm agile" reprogrammable cryptography; may also have business/commercial applications
Enigma a software version of the famous WW2 crypto machine [for entertainment only!]
"Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security" (a report commissioned by Business Software Alliance) by M. Blaze, W. Diffie, R. Rivest, B. Schneier, T. Shimomura, E. Thompson, and M. Wiener; Jan 1996; Matt Blaze comments that that "more efficient attacks than those we considered might also be possible and should be taken into account by the prudent cryptosystem designer;" ASCII text and PostScript format
see also: Archives, Commerical Organizations, Protocols

Steganography - hiding information within noise; a way to supplement (not replace) encryption, to prevent the existence of encrypted data from being detected

Finney's essay on "security through obscurity" and "keyed steganography"
Workshop on Information Hiding, University of Cambridge, UK (30 May - 1 June 1996)
FTP archive of steganography programs
steganography
steganography article
Neil Johnson's links to steganography info
Ross Anderson's bibliography on steganography
Markus Kuhn's steganography web page and mailing list
S-Tools steganography toolkit
STEGO is a Mac program that hides encrypted data in a PICT file; written by Romana Machado, whose Peek of the Week site features "glamorous erotic art photography"
Adam Back's STEALTH program strips standard headers from a PGP encrypted message, making the result look like random noise
MandelSteg creates a Mandelbrot "fractal" image in which your encrypted data is stored in a specified bit-plane
file archive at Univ. of Vienna

Voice Encryption (telephone security, wiretapping threats) - 3 software programs listed below turn a computer (with modem and sound card) into a secure telephone, using speech compression and strong encryption protocols to provide a secure real-time voice channel over the public telephone system or Internet:

PGPfone - Windows'95/NT version 1.0b1 available from FTP sites in .nl, .fi, and .no; release 1.0b6 for Macintosh (not compatible with previous versions) available from FTP site in .nl; source code available "shortly"
Nautilus v1.0a - voice encryption for DOS and Unix; source code avail.; alternate FTP sites in .it, .uk, and .fi
Speak Freely - Windows application that encrypts and sends real-time voice data over a network; supports encryption with DES, IDEA, or key file; supports PGP for key-exchange
Louis Cypher (LC-1) - a prototype secure telephone unit that uses "fulltime RSA" encryption "for both the exchange of session keys and the data transfer itself"; developed by German students Huwig and Baller
Digital Telephony Initiative and CALEA (Communications Assistance for Law Enforcement Act of 1994) - FBI plan for automated surveillance of millions of phone lines
ATTILA is a traffic analyzer for public telephone and ATM/SONET networks developed for DoD; ATTILA has "powerful wire tapping capability" and can "define filters" to "trigger the capture of traffic on connections between... specified originating and/or terminating call addresses (with wild card fields). The captured traffic could be displayed (heard/seen) in real time or stored in memory for later playback."
Technical Surveillance Countermeasures - extensive information on wiretapping threats and (non-cryptographic) countermeasures

Vulnerabilities - risks & defects in cryptography-based security systems

Timing Attack - precise CPU timing of cryptographic computations can reveal key information
- Paul Kocher's paper (Dec 1995) brought widespread attention to the timing attack problem
- RSA's Comments explain how the timing attack is easy to guard against
- Matt Blaze's quantize code for Unix and Win32 defeats the timing attack by inserting a delay time in crypto computations
Bugs Bounty: Community Connexion offers prizes for discovery of security bugs in Netscape, Win95, and Java
security defects in MicroSoft's Windows NT and Win95:
- Ted Cabeen's report on how passwords may be stored in the registry's Security section
- David Ross wrote a simple C program that breaks the password encryption code in the Windows 95 registry
- security bugs in Windows 95
- security bugs in Windows 95
Netscape Cracked - Ian Goldberg and David Wagner (CS students at UC Berkeley), writing in Dr. Dobb's Journal (Jan 1996), describe weaknesses they found in the PRNG of Netscape's SSL implementation; see also their report on crypto-quality pseudo-random numbers
Flaw in Kerberos 4.0 reported by 2 Purdue students; caused by inadequate RNG operation, similar to Netscape SSL flaw (previous item)
"Minimal Key Lengths for Symmetric Ciphers to Provide Adequate Commercial Security" (report commissioned by Business Software Alliance) by M. Blaze, W. Diffie, R. Rivest, B. Schneier, T. Shimomura, E. Thompson, and M. Wiener; Jan 1996; Matt Blaze comments that that "more efficient attacks than those we considered might also be possible and should be taken into account by the prudent cryptosystem designer;" ASCII text and PostScript format
UNIX sendmail can be exploited to gain root access; this attack can be hidden in JavaScript (see next item) and works behind firewalls
JAVA and JavaScript pose serious security hazards, not because of any weakness in cryptography, but because security was not part of their original design. Current versions lack features for configurability, authentication, and control over whose applets or scripts are run. Fixes to these security holes will likely incorporate encryption technology.
- Directions for Java - musings on policies, threats and liabilities of Java, Livescript and other downloadable applets; by Adam Shostack (Dec 1995)
- JavaScript security hole page by John LoVerso of OSF Research Institute
- more to come...
more on crack of Netscape
RSA factorization
BellCore report on RSA factorization
NPAC Northeast Parallel Architectures Center - RSA factorization
PGP Attack FAQ - review of how PGP might be attacked or compromised (Feb 1996)
password crackers

FEEDBACK is welcome:
E-mail your comments and suggested additions to Bob Flower at
chronos@enter.net

COPYRIGHT (C) 1996 Robert G. Flower. All rights reserved.
Permission is granted to any nonprofit nongovernment organization to reproduce any portion of this document, provided that this copyright notice is reproduced. Any other reproduction in part or in whole in any form or medium without explicit written permission of the copyright owner is prohibited.
Trademarks are the property of their respective owners.

DISCLAIMER:
This information is provided for research and educational purposes only. No warranty is made as to its accuracy, completeness, or suitability for any particular purpose. Cryptography technology is regulated in some countries. The reader is responsible for compliance with applicable laws.

NOTE to Web Meisters and bookmarkers:
Please link to the Crypto•Log Welcome Page at URL:
http://www.enter.net/~chronos/cryptolog.html

Crypto•Log is served by ENTER.NET, the premier Internet Service Provider in eastern Pennsylvania