1971 IBM's work on the Lucifer cipher and the work of the NSA lead to the U.S. Data Encryption Standard (=
1976
1977/78 the
1984 Congress passes Comprehensive Crime Control Act
- The Hacker Quarterly is founded
1986 Computer Fraud and Abuse Act is passed in the USA
- Electronic Communications Privacy Act
1987 Chicago prosecutors found Computer Fraud and Abuse Task Force
1988 U.S. Secret Service covertly videotapes a hacker convention
1989 NuPrometheus League distributes Apple Computer software
1990 -
- Charles H. Bennett and Gilles Brassard publish their work on Quantum Cryptography
- Martin Luther King Day Crash strikes AT&T long-distance network nationwide
1991
- one of the first conferences for Computers, Freedom and Privacy takes place in San Francisco
- AT&T phone crash; New York City and various airports get affected
1993 the U.S. government announces to introduce the
1994
- the
1990s work on quantum computer and quantum cryptography
- work on biometrics for authentication (finger prints, the iris, smells, etc.)
1996 France liberates its cryptography law: one now can use cryptography if registered
- OECD issues Cryptography Policy Guidelines; a paper calling for encryption exports-standards and unrestricted access to encryption products
1997 April European Commission issues Electronic Commerce Initiative, in favor of strong encryption
1997 June PGP 5.0 Freeware widely available for non-commercial use
1997 June 56-bit DES code cracked by a network of 14,000 computers
1997 August U.S. judge assesses encryption export regulations as violation of the First Amendment
1998 February foundation of Americans for Computer Privacy, a broad coalition in opposition to the U.S. cryptography policy
1998 March
1998 April NSA issues a report about the risks of key recovery systems
1998 July
1998 October Finnish government agrees to unrestricted export of strong encryption
1999 January RSA Data Security, establishes worldwide distribution of encryption product outside the USA
- National Institute of Standards and Technologies announces that 56-bit
- 56-bit DES code is cracked in 22 hours and 15 minutes
1999 May 27 United Kingdom speaks out against key recovery
1999 Sept: the USA announce to stop the restriction of cryptography-exports
2000 as the German government wants to elaborate a cryptography-law, different organizations start a campaign against that law
- computer hackers do no longer only visit websites and change little details there but cause breakdowns of entire systems, producing big economic losses
for further information about the history of cryptography see:
for information about hacker's history see:
TEXTBLOCK 1/5 // URL: http://world-information.org/wio/infostructure/100437611776/100438658960
"The multiple human needs and desires that demand privacy
among two or more people in the midst of social life must
inevitably lead to cryptology wherever men thrive
and wherever they write."
David Kahn, The Codebreakers
In the age of the vitreous man, whose data are not only collected by different institutions but kept under disclosure, out of reach, uncontrollable and unmanageable for the individual, privacy obtains new importance, receives a much higher value again.
The irony behind is that those who long for cryptography in order to preserve more privacy actually have to trust the same people who first created the methods to "produce" something like that vitreous man; of course not the same individual but persons of the same area of science. It is the reign of experts.
So far about self-determination.
for a rather aesthetic view on privacy and cryptography see:
TEXTBLOCK 2/5 // URL: http://world-information.org/wio/infostructure/100437611776/100438658809
~ 1900 BC: Egyptian writers use non-standard
1500 an enciphered formula for the production of pottery is done in Mesopotamia
parts of the Hebrew writing of Jeremiah's words are written down in "
4th century
487 the Spartans introduce the so called "
170
50-60
TEXTBLOCK 3/5 // URL: http://world-information.org/wio/infostructure/100437611776/100438659084
The new U.S. regulations are based on the Wassenaar Arrangement Revision of 1998, where exports without license of 56 bit
For more information see:
Seven states stay excluded from the new freedom. These are states like Libya, Iraq, Iran, North Korea and Cuba, altogether states seen as terrorist supporting. No encryption tools may be exported into those countries.
This is, what happened in the USA, whereas in Germany the issue of a cryptography-law is still on the agenda. Until now, in Germany, everyone can decide by her-/himself, whether she/he wants to encrypt electronic messages or not. Some organizations fear that this could get changed soon. Therefore an urgent action was organized in February 2000 to demonstrate the government that people want the freedom to decide on their own. One governmental argument is that only very few people actually use cryptography. Therefore the urgent action is organized as a campaign for using it more frequently.
For more information on this see:
Other European countries have more liberate laws on cryptography, like France. Austria doesn't have any restrictions at all, probably because of a governmental lack of interest more than accepting freedom.
The (former) restrictions in the bigger countries influenced and hindered developments for safer key-systems, e.g. the key-length was held down extraordinarily.
"Due to the suspicious nature of crypto users I have a feeling DES will be with us forever, we will just keep adding keys and cycles (...). There is a parallel between designing electronic commerce infrastructure today that uses weak cryptography (i.e. 40 or 56 bit keys) and, say, designing air traffic control systems in the '60s using two digit year fields. (...) Just because you can retire before it all blows up doesn't make it any less irresponsible."
(Arnold G. Reinhold)
The Chinese State Encryption Management Commission (SEMC) announced in March 2000 that only strong encryption tools will have to be registered in the future. Which sounds so nice on first sight, does not mean a lot in reality: any kind of useful encryption technique, like the
The restrictions and prohibitions for cryptography are part of the states' wish to acquire more control - in the name of the battle against criminality, probably?
Due to the emerging organized criminality the governments want to obtain more freedom of control over citizens. Organizations like the NSA appear as the leaders of such demands.
What about civil rights or Human Rights?
TEXTBLOCK 4/5 // URL: http://world-information.org/wio/infostructure/100437611776/100438659135
As stated before the sense of cryptography is a properly designed cryptosystem making it essentially impossible to recover encrypted data without any knowledge of the used key. The issue of lost keys and the being-locked-out from one's own data as a consequence favors key recovery systems. On the other hand the counter argument is confidentiality: as soon as a possibility to recover a key is provided, the chances for abuses grow.
Finally it is the state that does not want to provide too much secrecy. On the contrary. During the last 20 years endless discussions about the state's necessity and right to restrict private cryptography have taken place, as the governments rarely care for the benefit of private users if they believe in catching essential informations about any kind of enemy, hence looking for unrestricted access to all keys.
The list of "key recovery," "key escrow," and "trusted third-party" as encryption requirements, suggested by governmental agencies, covers all the latest developments and inventions in digital technology.
At the same time the NSA, one of the world's most advanced and most secret enterprises for cryptography, worked hard in getting laws through to forbid the private use of strong encryption in one way or the other. Still, it is also organizations like this one that have to admit that key recovery systems are not without any weaknesses, as the U.S. Escrowed Encryption Standard, the basis for the famous and controversially discussed Clipper Chip, showed. The reason for those weaknesses is the high complexity of those systems.
Another aspect is that key recovery systems are more expensive and certainly much less secure than other systems. So, why should anyone use them?
In that context, one has to understand the legal framework for the use of cryptography, a strict framework in fact, being in high contradiction to the globalised flow of communication.
TEXTBLOCK 5/5 // URL: http://world-information.org/wio/infostructure/100437611776/100438659037
Gaius Julius Caesar (100-44 BC) was a Roman Statesman who came to power through a military career and by buying of votes. His army won the civil war, run over Spain, Sicily and Egypt, where he made Cleopatra a Queen. For reaching even more power he increased the number of senators. But he also organized social measures to improve the people's food-situation. In February 44 BC he did not accept the kingship offered by Marc Anthony, which made him even more popular. One month later he was murdered during a senate sitting.
The skytale (pronunciation: ski-ta-le) was a Spartan tool for encryption. It consisted of a piece of wood and a leather-strip. Any communicating party needed exactly the same size wooden stick. The secret message was written on the leather-strip that was wound around the wood, unwound again and sent to the recipient by a messenger. The recipient would rewound the leather and by doing this enciphering the message.