Feeds

IT security to become political battleground

DRM and wire-tapping rise up the political agenda

  • alert
  • submit to reddit

5 things you didn’t know about cloud backup

RSA Security will re-emerge as a major arena for political debate over the next year, cryptography legend Whitfield Diffie predicted today.

The cryptographic community fought a long and ultimately successful battle to lift US export restrictions on encryption technology. The climax was a Clinton administration decision more than four years ago to relax controls.

Since then - aside from the ever-present debate about handing over cryptographic keys to law enforcement authorities - things have been a good deal quieter, at least intellectually.

Diffie, chief security officer at Sun Microsystems, forecasts that this will change in coming months. The political battle will spill over into two distinct technology fields.

Conflicting views about law enforcement requests to monitor voice over IP networks and over digital rights management (DRM) technology will re-energise IT politics, he said.

Extending wiretapping to VoIP is controversial because it "affects the architecture of networks of all kinds," according to Diffie.

And DRM is contentious because it extends to copyright holders control over end-user systems.

Diffie said the argument over DRM was complicated by its use in non-controversial applications. For example, DRM technology could be applied to verify that the configuration of a system hadn't been altered by hackers.

"A technology that attests to the configuration of a component in a dynamic network and says 'its safe for you to play' is of great security benefit. Whether it’s a technology you should force on consumers is far less clear," he said.

With legislation on spam on both sides of the Atlantic last year, politics has hardly disappeared from the IT industry. Diffie argues that these debates are not characterised by the real clash of competing philosophies which characterised the crypto export debate.

Diffie made his comments during a cryptography panel at the RSA Conference in San Francisco. ®

The Register RSA coverage in full

Next gen security for virtualised datacentres

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 10 endpoint backup mistakes
Avoid the ten endpoint backup mistakes to ensure that your critical corporate data is protected and end user productivity is improved.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.