> ----------
> From: L. Sassaman[SMTP:[EMAIL PROTECTED]]
> On Wed, 17 May 2000, John Young wrote:
>
> > While John may be speculating about NSA subversion of strong crypto,
> > specific examples of this would be very helpful. Here are a few firms
> > for consideration as candidates for today's Crypto AGs besides Microsoft
>
> > (meaning latest products, not those that have been suspected in the
> past):
> >
> > Cylink
> > IBM
> > Lotus
> > TIS
> > RSA
> > PGP
>
[...]
> Well, I can tell you that my NDAs do not cover secrecy agreements for
> compromises made with the NSA. If PGP were in any way compromised by the
> NSA (or any other party, for that matter) I would not be working here.
>
>
I'd like to concur with Mr. Sassaman. Many people who work at security
related firms have a major personal committment to the principle of
privacy - enough that I suspect that it would be near impossible for any
major firm to deliberately compromise their products, and keep the
fact secret.
Peter Trei
[Disclaimer: The above is my own opinion only; it may or may not
represent that of my employer, though I would hope that it does.-pt]
