Country X (which shall remain unnamed for fear of retribution against your defenseless instructor) attempts to regulate cryptography in all form. Sharing secret keys can be done only by exchanging messages over the Internet. The government requires that it be the only certification agency for public keys, that RSA be the only public-key crypto technique that can be used, and that all public-key cryptography users have their keys certified by the government. Furthermore, the government creates the public key for a user to use before certifying it. (In other words, the government keeps a copy of the corresponding private key.) Describe a way in which the users may defeat the government’s objective of eavesdropping on its citizens, and use the government run certification service to provide authenticated secure channels between arbitrary pairs of users that the government cannot listen on. Assume that the users can use only well known crypto techniques that they have learned in this class and the government cannot break any crypto without having the necessary key.
Concerns about privacy invasions often involve the possibility that law enforcement officials can cast an unduly broad net, or one that is seen as discriminatory, as they gather information about persons in the absence of specific reasons to suspect that these individuals have violated some particular law.
A case in which an individual is targeted to see if he or she has violated a law is conceptually (and legally and morally) different from a case in which information is gathered about an individual as part of an investigation into a known or suspected violation of law or in which there are other grounds for suspicion. In the former case, information may be gathered about individuals who in fact were not involved in a violation—which is different in kind from the task of assembling information about an individual in the hope of finding a violation of law.
he notion of a right to privacy of citizens in their communications is ... The EC has considered banning the public use of "strong" cryptography. ... Internet users are, in fact, highly vulnerable to the placing of national "security" ..... which can prove it will only be used for data authentication purposes
Country X (which shall remain unnamed for fear of retribution against your defenseless instructor) attempts to regulate cryptography in all form. Sharing secret keys can be done only by exchanging mes...
Country X (which shall remain unnamed for fear of retribution against your defenseless instructor) attempts to regulate cryptography in all form. Sharing secret keys can be done only by exchanging messages over the Internet. The government requires that it be the only certification agency for public keys, that RSA be the only public-key crypto technique that can be used, and that all public-key cryptography users have their keys certified by the government. Furthermore, the government creates the public key for...