« The Resilient Enterprise | Main | Congrats to Dann and Shellie »

September 12, 2005

Comments

Dennis

A couple months ago, I saw an article about the U.S. law requiring IP telephony to be tappable. It quoted Skype's CEO saying "we're based in Luxembourg, so we're free to ignore U.S. law, and I intend to do so." Now that Skype will be owned by eBay, I'm wondering what's going to happen to the nice decentralized routing and strong encryption...

STRONG

Dennis - STRONG encryption is a facially. In regards to Skype, the answer what you are thinking...

Dennis

If you mean fallacy, perhaps you should inform all the professional cryptographers who have been unable to defeat current published encryption algorithms.

STRONG

Facially... not fallacy - which would mean that STRONG encryption itself was a invalid inference. Facially refers to something superficial that is used to cover a deficiency or defect. The defect being the system, not the application.

John Robb

Don't you mean facile?

STRONG

;)

nope.

phil  jones

My theory this is all about rolling PayPal into Skype. So you can IM money to people during the conversation. Will open up a new market for online services. Get ready to consult a doctor or lawyer in India for a ten dollar phone-call.

dennis

I might get what you mean: as Bruce Schneier has put it, trusting in strong encryption is like building a fence with just one giant stake. You won't break the stake, but you can go around it.

Skype's encryption algorithm is almost certainly secure for now, assuming their code is correct, but I don't know anything about whether the entire protocol is secure. Quite possibly the NSA has found a way around the encryption, and has sufficient surveillance resources to track calls through all the peers. However, less technical agencies will have more difficulty, and it's certainly going to be a lot more difficult than just telling the phone company "put a tap on Joe," which is all they have to do with any telecom company in compliance with U.S. law.

STRONG

http://www.schneier.com/blog/

The comments to this entry are closed.