Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Privacy Your Rights Online

Senator Backs Down On Crypto Backdoors 169

evenprime writes: " Sen. Judd Gregg (Republican, New Hampshire) was advocating mandatory backdoors in crypto on Sept. 13. Wired is now reporting that Sen. Gregg has changed his mind. They say that Gregg's spokesman, Brian Hart, has said: 'We are not working on an encryption bill and have no intention to.'" As Rob Carlson is quoted at the article's close, though: "(Gregg) said he was definitely supporting it. Now he says he's definitely not. Maybe he'll say he's definitely supporting it again."
This discussion has been archived. No new comments can be posted.

Senator Backs Down On Crypto Backdoors

Comments Filter:
  • Definitely (Score:4, Funny)

    by bill.sheehan ( 93856 ) on Wednesday October 17, 2001 @11:03AM (#2441619) Homepage
    "(Gregg) said he was definitely supporting it. Now he says he's definitely not. Maybe he'll say he's definitely supporting it again."

    Our beloved solons are sometimes wrong, but never in doubt.
    • Well there is something that scares me...

      Either this man just felt that he could gain something from his standpoint at a critical time, or is it possible that he got what he wanted? I don't mean backdoors, because that would be public knowlage.. i mean mabie he got something else? Echilon or Carnivore perhaps? Could it be that he stumbled onto something bigger in his field of interest? Polititions are know for making big scenes to overshadow the truth.

      What do you think?
  • Who wrote letters about this? I congratulate you for your efforts - they seem to be successful at this point.
    • Re:Show of Hands (Score:3, Insightful)

      by rknop ( 240417 )

      I didn't write to Gregg, though I did write to my own congressman and senators. I also sent E-mail to a whole bunch of friends encouraging them to write. (My wife wrote in, and got an E-mail back from the senator saying that yes, he too was strongly in favor of gun rights. Gotta love it when it's so bloody obvious that nobody reads these things.)

      I doubt I can take much credit for this, though. I suspect that Gregg was swayed by either public opinion, or, more likely, by the usual suite of deep pockets in Washington who pointed out that these sorts of things would make life very difficult for big campaign donors.

      Of course, there's recent rumblings from the RIAA and the MPAA that they think that privacy legislation is their biggest threat; wait for the "defense of copyright" bills which say that any encryption product must pass escrowed keys to the government and to the AAP, RIAA, and MPAA so that they can enforce their copyrights! Terrorism schmerrorism, the greatest threat to the USA is that somebody somewhere might be making copies of USA mass media products!!!!!.

      -Rob

    • Re:Show of Hands (Score:3, Interesting)

      by Bonker ( 243350 )
      Usually, when there is an issue I'm concerned about, I fire off a quick email to my rep and both senators, since they (oddly) both seem to send a staffer-written reply that is pertinent to what I've written.

      Larry Combest, R-TX,(or his staffer) said something to the effect of, "Senator Hollings has not introduced legislation known as the SSSCA to the House yet. When and if he does, I will keep your opinions in mind," in response to the email I sent about the SSSCA.

      Encryption controls, even more than roving wiretaps or secret warrants or anything else was the thing I was concerned about most, and put in a 'my vote for you depends on this' line into my correspondance to my reps. I'm glad to see that there was enough pressure to 'force this off the plate'.

      Remember that at least some of these people were bright enough to get through various law-schools on their own merits. Corruption and campaign finance-whoring aside, they can be made to understand the issues if they get pounded hard enough often enough.
    • Judd Gregg is my senator, and I agree with him on many issues. When I heard his stance on this (which he apparently held since before I was his constituent), I immediately wrote, printed, and mailed a letter on the topic.

      I got a response just this week, but it's not clear from the (I assume) canned response whether or not anyone in his office actually recorded my position on the matter.

      Oh, well. I'm glad at least one proponent of this ridiculous position is backing off a bit.
    • by fobbman ( 131816 ) on Wednesday October 17, 2001 @11:20AM (#2441737) Homepage
      Looks like those jpg's of Senator Gregg and his mistress that I intercepted and then attached to my recommendations that secure email encryption is a Good Thing seemed to have done the job.

      Sometimes you've gotta relate to them on the lowest common denomenator.

    • by Anonymous Coward
      Maybe he finally checked his email. Somehow I don't think he's going to be looking at hand written letters for a while.
    • I didn't write Gregg specifically, but I did write my Md. senators - Mikulski & Sarbanes.

      Also I managed to get about 10 minutes of airtime on 2 occasions on the Marc Steiner show. For those who don't live in the Baltimore area, that's the noon talk show on our NPR affiliate, WJHU 88.1. The first time I got on, Marc was interested enough to ask me to e-mail hom info on the topic, he thought it would merit a show of it's own. I did, & sure enough, the following week, he did an entire hour of his show on crypto legislation.
  • by zpengo ( 99887 )
    As Rob Carlsen is quoted at the article's close, though: "(Gregg) said he was definitely supporting it. Now he says he's definitely not. Maybe he'll say he's definitely supporting it again."

    Don't you just love politicians who stand by their positions?

    • At least he is on the correct side now. Don't look a gift horse in the mouth.
      • Lets just make sure he's not trying to pull an Adobe. It could very well be that there's enough support established for it from others that he knows he can reverse his opinion and still get it passed no matter how actively against it he appears to be.
    • Re:Hrm. (Score:4, Insightful)

      by nojomofo ( 123944 ) on Wednesday October 17, 2001 @11:17AM (#2441717) Homepage

      Don't you just love politicians who stand by their positions?

      This sort of comment bothers me. When we heard about this, there was a general cry on Slashdot: "Write letters so they understand how we feel and change their minds!" Well, he's changed his mind (perhaps because he now understands how his constituents feel, perhaps not). But don't we, in cases like this, really want our elected officials to do what we want them to? Maybe he really does have all of our interests in mind, he just needed to be educated?

      He's in a no-win situation. If he didn't change his mind, it's: "He's listening to corporations! He's been bought! He's not representing us! Why won't he read our letters and change his mind?". But now that he did, it's: "no-good politicians can't stand for what they believe in!".

      So you tell me: which way do you want it?

      • Re:Hrm. (Score:5, Insightful)

        by tpm ( 520483 ) <todd@rgv.rr.com> on Wednesday October 17, 2001 @11:49AM (#2441909) Homepage
        I want politicians who are smart enough to educate themselves before taking a position in the first place. Is that too much to ask?
      • Re:Hrm. (Score:2, Insightful)

        by Anonymous Coward
        I think the key here is that there was no reason given for his change of heart. If he had said "these people told me this, this, and this, now I understand why I was wrong the first time." then we would be happy. When a politician simply reverses policy without explanation we can't tell if the change was made for the right reasons, and if he changed his policy for the wrong reasons then we can't count on him sticking to the correct policy.
      • I read Timothy's comments differntly. I read it as, "don't think this means you can relax your efforts to educate and lobby, freedom's cost is eternal vigilance."


        Why he didn't say that exactly I don't know. Maybe Slashdot is denial about becoming a "indepenant tech interest" activist group

    • Don't you just love politicians who stand by their positions?

      Actually, I love politicians who change their mind after being exposed to new information and opinions. Sheesh. Sometimes, you can't win. If you're a politician who won't change your mind, you're "closed-minded." If you're a politician who changes his mind after further consideration, then you're "a shifty weasel without principles."

      Politicians face the same challenges as the rest of us. What are "core principles" that should never be compromised and what are "practical principles" that need to be adjusted as situations change and/or new information becomes available?

    • Re:Hrm. (Score:1, Interesting)

      by Anonymous Coward
      Politicans _should_ change their position, if they come to understand why their position was incorrect.

      Think of science - Science is _built_ on making a proposition and testing it, and abandoning the proposition if it tests false. i.e. scientists must be prepared to continuously "change their belief", if they're beliefs don't fit reality (the essence of the difference between science and religion).

      Why should politics be any different?

  • Anyone that thinks about any such bill for 2 seconds will realize that it would cost US companies billions when the backdoor was cracked.
  • Perhaps (Score:5, Interesting)

    by Green Aardvark House ( 523269 ) on Wednesday October 17, 2001 @11:08AM (#2441654)
    From the Wired article:

    I think if they put a crypto provision in this bill, it would have passed," Froomkin said. "Look at what the administration got."

    Froomkin was talking about additional eavesdropping and surveillance powers requested by the Bush administration, which the Senate and the House overwhelmingly voted for last week. That bill is called the USA Act.


    He backed off crypto backdoors because the government is going to get enhanced wiretapping powers, etc.

    It's a little give and take, but it's nice to see the "give" this time.
    • " I think if they put a crypto provision in this bill, it would have passed," Froomkin said. "Look at what the administration got." Froomkin was talking about additional eavesdropping and surveillance powers requested by the Bush administration, which the Senate and the House overwhelmingly voted for last week. That bill is called the USA Act." Please read my post in "defenatly" I KNOW i am not paranoid now!!
  • My God ... (Score:4, Interesting)

    by Daniel Dvorkin ( 106857 ) on Wednesday October 17, 2001 @11:08AM (#2441655) Homepage Journal

    This is the first time I can think of where some politico who was talking about some horrible piece of legislation which was opposed in an organized fashion by the open-source community actually changed his mind. Am I being wildly optimistic in thinking that the online petitions, EFF lobbying, etc. made a difference, and might make a difference in the future? Or was there some other factor at work here?

    • Re:My God ... (Score:2, Interesting)

      Well I imagine that almost all corporations were opposed to this. Not only do they not want the government listening in to their plans, but the amount of money it would cost software, hardware, and any other company that implements, develops, sells, uses crypto is enormous. The list is very long. I'm sure many of the companies on that list were able to "convince" the Senator that this is a bad idea.
      • If there was anybody with the lobbying power to stop this, I would guess the financial services industry. Secure transmission of financial transactions is vital to the integrity of our banking system.

        I think Sen. Gregg would do well to remember the NH state motto: "Live Free or Die"
    • Re:My God (No) (Score:5, Insightful)

      by anonicon ( 215837 ) on Wednesday October 17, 2001 @11:16AM (#2441710)
      I seriously doubt that the Open Source movement or the EFF made any difference, but that big, American multinationals made all the difference. Remember, they require encrypted communications too, and the idea that a competitor or foreign government could pay someone off to secure access to the backdoor would sacre us, because it *might* cost our companies (good and bad) billions, as someone already pointed out.

      When big or medium business is threatened by this style of legislation, you can pretty much count on it to die or be severely watered-down or exempted.

    • Re:My God ... (Score:4, Insightful)

      by Rogerborg ( 306625 ) on Wednesday October 17, 2001 @11:24AM (#2441759) Homepage
      • [did] EFF lobbying, etc. made a difference [or]was there some other factor at work here?

      The MPAA/RIAA pointed out to him that they use encryption, and that there's no way they're going to trust their enforcement/collection division (US Government Inc.) with the keys?

      This is presented frivilously, but it's a real possibility. There are plenty of corporate users of encryption who can easily afford to contribute a Mercedes or two to Senator Gregg's campaign fund to get this farcical idea off the table.

      Holy heck, there's a nice hobby. Proactively inviting corporate bribes ("campaign contributions") by proposing dumb bills that will hurt them. Much more efficient than waiting for OmniGlobalHyperMegaCorp to come a-knocking on your door.

      • Holy heck, there's a nice hobby. Proactively inviting corporate bribes ("campaign contributions") by proposing dumb bills that will hurt them. Much more efficient than waiting for OmniGlobalHyperMegaCorp to come a-knocking on your door.

        Sounds like extorting the electorate, if you ask me.
    • Re:My God ... (Score:2, Interesting)

      Am I being wildly optimistic in thinking that the online petitions, EFF lobbying, etc. made a difference, and might make a difference in the future? Or was there some other factor at work here?

      Well, yes and no. :) It is very likely that the open source community was able to influence this decision, but in all likelhood, it seems to me that the flames of legislative paranoia seem to be dying out. This potential law reminded me of anti-flag burning legislation that seems to come up every few years or so. Thanks to fervent nationalism, laws like this always get passed in a hurry, but then shot down later on when it is realized how completely unconstitutional and unjust they would be.

      I'm happy to see that people are seeming to come back to their senses, and not trying to prey on the fears of the unwitting public.

    • I'm sorry but "we are not working on an encryption bill" means nothing to me. They'll just say "instead, we're working on this anti-terrorism bill, and whoops, what do you know, it includes clauses about encryption."
  • I don't have to worry about being a criminal for sshing to my home machine from work!

    For now at least.
  • by ldopa1 ( 465624 ) on Wednesday October 17, 2001 @11:11AM (#2441677) Homepage Journal
    I think some of us tech geeks ought to go to Capitol Hill and point out that "Secure" websites also use encryption. That banks transfer funds through encrypted channels, etc etc etc...

    Isn't it strange how "Encryption" is bad, but "Secure" is good despite the fact that they are the exact same thing? Criminals encrypt their transmissions but Bankers make "secure transmissions"
    • I think some of us tech geeks ought to go to Capitol Hill and point out that "Secure" websites also use encryption

      That's a great point. Without an encryption system universally (work with me here) accepted as "secure," the Red Cross would not have been able to raise $1,000 a minute at Amazon.

    • Isn't it strange how "Encryption" is bad, but "Secure" is good despite the fact that they are the exact same thing? Criminals encrypt their transmissions but Bankers make "secure transmissions"

      Why would you think this is strange -- at all? That's like saying, "isn't it strange how 'bankrobbing' is bad, but 'bank withdrawals' are good despite the fact that they are the exact same thing? Criminals rob banks, but brinks trucks make 'legal withdrawals'".

      Any laws are designed to deal with illegal uses of tools, rather than legal uses of tools. I'm not necessarily in favor of that legislation, but there's no contradiction here like you seem to believe.

      • Why would you think this is strange -- at all? That's like saying, "isn't it strange how 'bankrobbing' is bad, but 'bank withdrawals' are good despite the fact that they are the exact same thing? Criminals rob banks, but brinks trucks make 'legal withdrawals'".


        Robbery and making a withdrawl are not the same thing, so it's not quite a valid analogy. However, criminals encrypting their stuff and businesses using secure transmissions ARE the same thing, as far as the tool is concerned. The problem with trying to put a backdoor in encryption schemes, is that once you do, anybody can break in. This will effectively punish the people who use it legally as well as the ones who don't. In your example, this would have the effect of stopping ALL withdrawls (by criminal or customer) because some people are bankrobbers.

        The point he's trying to make is that the attitude of "criminals use encrypted transmissions so it must be stopped" will also have the effect of halting "banks using secure transmissions". But the officials who were behind this idea don't understand that.

        • The point he's trying to make is that the attitude of "criminals use encrypted transmissions so it must be stopped" will also have the effect of halting "banks using secure transmissions".

          This is what I find annoying, however: No one has argued banning all encryption. It's like all the fools who think the recently passed legislation defines any hacking as terrorism. The only thing that exceeds the arrogance of these posts is the ignorance.

          Like I said, I'm not a fan of the legislation, but advocating marching on Washington to lecture people about what they already know indicates the ignorance of the "marchers", not the legislators.

          • by Shagg ( 99693 ) on Wednesday October 17, 2001 @02:08PM (#2442585)
            This is what I find annoying, however: No one has argued banning all encryption.


            Obviously this is all moot now anyway, but I believe the initial proposal was to put back doors in ALL encryption. How do you put back doors (or ban, to use your words) only the encryption that the bad guys use? This is what the original person who started this thread was trying to point out. The stuff the bad guys use, is the same as the stuff the good guys use. You CAN'T make changes to one without affecting the other.


            He was saying that we should somehow make our lawmakers understand this, since it's obvious from the proposed "back door" law that they don't, or that they are at least trying to paint the political picture of encryption being a "bad guy thing".

      • This is bad because the two things are exactly the same. "Encrypting your transmission" is the same as "making a secure transmission". Only the emotional impact is different.

        By using one label in one context and another label in a different context, 'they' (the gov't, the media, the megacorps, etc.) define how you see right and wrong, by manipulating you with emotionally charged words.

        So, buying into the idea that it's perfectly OK for people to use emotionally charged words in whatever context they like without calling them on it is at least a partial buy in to the idea that you're going to be a sheeple puppet of the powers that be.
    • Isn't it strange how "Encryption" is bad, but "Secure" is good despite the fact that they are the exact same thing? Criminals encrypt their transmissions but Bankers make "secure transmissions"

      This is a classic ploy of our government and the corporate media.

      For example, whenever an enemy of ours is holding people against their will they are called "hostages," and whenever an ally is holding people they are called "prisoners."

      It's also unlikely that you'll ever see positive images of Arabs in the corporate media. Generally we only see them shooting guns into the air.

      If you know what to look and listen for you can make a fun game of it. :-)

      Rich...

  • Give Him A Break (Score:3, Insightful)

    by macsforever2001 ( 32278 ) on Wednesday October 17, 2001 @11:12AM (#2441683) Homepage

    Give Senator Judd a break! Just because he changed his mind on an issue is not a bad thing. He probably just came to his senses after hearing the facts about the issue. You should be happy. I am. Now if he did actually change his mind again, you might have cause to criticize.

    What's far worse are politicians who don't change their mind at all. You might as well dismiss the entire concept of debate.

    Criticism, as Slashdot readers have proven time and again, is easy and abundant. Taking a stand is much harder. Changing your stand after hearing the arguments is an important part of democracy and free will.

    • Give Senator Judd a break! Just because he changed his mind on an issue is not a bad thing. He probably just came to his senses after hearing the facts about the issue. You should be happy. I am.
      I'm extremely happy he changed his mind. I don't think anyone's complaining about that at all. But in coming forward so stridently at first, he swayed the opinion of those who assumed that he knew what he was talking about. Remember, Slashdot readers are not representative of the US population at large--witness the large numbers of people answering in the affirmative when asked if they'd be willing to give up some of their freedoms if doing so would help the war on terrorism. People hear rhetoric about secret unbreakable messages being sent by terrorists, whether true or not, and naturally they want to make it possible for the government to intercept those messages. So when a senator calls for back doors in the wake of the worst terrorist attack in history, they're all for it. They're unlikely to be swayed back. Sen. Gregg's initial call made front-page headlines. His retraction will be buried. He should have been put more thought into his initial position before announcing it.
      • I don't think anyone's complaining about that at all.

        Actually I was talking about the original post which said, in part, "(Gregg) said he was definitely supporting it. Now he says he's definitely not. Maybe he'll say he's definitely supporting it again." and some of the early Slashdot replies. But I was unclear about my remark - thanks for pointing that out.

        He should have been put more thought into his initial position before announcing it.

        Certainly a true statement - and I wish more politicians would do that. However, in the wake of the terrorist attacks, politicians had to take some kind of stand or they would be criticized as "not doing anything". Granted I think this is the fault more of the mob rules politics of today than anyone in particular.

  • by Apreche ( 239272 ) on Wednesday October 17, 2001 @11:14AM (#2441689) Homepage Journal
    You know Martin Luther King Jr. and Gandhi? You know what they had in common? They both thought that their respective governments had unjust laws, so they disobeyed those laws and accepted the punishments for them, and it worked.

    This particular story is good news, because it means that representatives do think and can be convinced that they're not right. However there are still things like the SSSCA and the DMCA. I believe these laws are unjust myself. So I disobey them. If I get locked up in jail one day, so be it. But what good is their law if nobody obeys? Let them throw all the nerds in jail. See what happens then.

    This is a little crazy, but imagine if all of slashdot turned off all of our servers at home and work. Then we refuse to turn them back on until the unjust laws are repealed.

    Yeah, it's crazy, but I just ate a giant pixy stick, and I'm excited because my new computer is coming today.
    • They will just have to train a new generation of nerds. Or they can just use the national guard.
    • If there was a geek's union and basically all geeks belonged to it. Then we wouldn't even have to turn off the servers, all we'd have to do is refuse to work. I mean things break at a fantastic rate and people would be screaming for support probably in less than 24 hours. Also, unlike the strakes of yester year, tech jobs are high skill, specialised, and of a relitavily scare workforce. If the entire geek workforce went on strike, there'd be no way to adiquately replace it for many years much less in the few days that would be necessary.

      What keeps this from working is there is no big union. For something like this to work you really have to have basically all the tech workers signed on. Even 60-70% would probably not be enough. Id' say you'd need at least 85% and maybe above 90%. Only then would there be enough immediate squeze to really make people listen. However, most geeks I know including myself have no desire to unionize. There are some benifits, but I think it's not worth it.

    • Wow today at this moment I envy you. A giant pixie stick and a new computer.....
    • Here there are 1 out of 5 who emotionally support you, but since I know that the other 4 people could run things without me, what would I be proving?
      (Well, what I'd be proving is that I'm ready for retirement.)
  • by Merk ( 25521 ) on Wednesday October 17, 2001 @11:16AM (#2441703) Homepage

    It's kinda funny. For a long time now people have been saying "if you want your congress rep, senator, MP, friendly dictator, etc. to listen send them snail-mail". These days with the Anthrax scares, I'd say one way to guarantee your rep won't see what you wrote it to send it by snail-mail.

    Will this result in more reps using email, and thus more influence for geeks? Or will this just mean phone calls and personal appearances become even more important.

    One thing's for sure. If you want to write your rep a letter about something that matters to you -- put down that powdered sugar donut and wash your hands before you do do it!

  • by nihilvt ( 212452 ) on Wednesday October 17, 2001 @11:16AM (#2441706)
    Are you people never satisfied? You complain about how narrow minded people are, and when they change thier stance so that it aligns with yours, you complain that they change their stance. I can understand the distrust. However, blasting people that join your side doesn't do much to help your cause.
  • by Kruemelmo ( 21012 ) <moritz@dane b e n . de> on Wednesday October 17, 2001 @11:16AM (#2441708) Homepage
    probably he was surprised that his IT department staff suddely smiled at him knowingly when passing by since he started an email flirt.
  • A backdoor to a crypto cipher kind of makes cryptography useless. If the data was meant to be obscure to everyone , but a cipher contains a backdoor for anybody to attempt to exploit...then it makes the point of cryptography moot.

    Have you also considered that the security of our nation could be put into jeopardy if, say, a (forgive me for using such a cliche) terrorist were to take advantage of such a backdoor?

    Try again next time.

  • The fun never stops. (Score:3, Informative)

    by trilucid ( 515316 ) <pparadis@havensystems.net> on Wednesday October 17, 2001 @11:19AM (#2441728) Homepage Journal

    Ok, I'm sure none of us are surprised by this sort of political backpedalling, but it's still funny and sad at the same time.

    Judd's actions were (IMHO) mostly a knee-jerk, "let's get some P.R. for our re-election campaign going" fear-based reaction. It's sick to see politicians using something as horrible as 9/11 for their own ends like this, but again, not surprising.

    Here's another site discussing this stuff as well: Wartimelibery.com [yass] [wartimeliberty.com].

    As for the so-called poll results that were "supporting" his initial efforts to get this stuff rammed through into policy, they're just more evidence that the American public doesn't entirely grasp the full ramifications of this sort of thing. Now, I'm not blaming these people entirely. I'd be *completely* unqalified to talk about heart surgery, although I understand encyption.

    Maybe its time for more public efforts aimed at educating the masses about how encryption really works. This might help reduce the position a lot of folks have taken recently that "it's a terrorism tool" and such. Yes, it can be used for evil, but so can the spatula I use to flip my pancakes on the stove. Nobody wants to outlaw cookware.

    Anybody got links to projects in action *now* that are trying to accomplish this sort of thing?

  • by CmdrTroll ( 412504 ) on Wednesday October 17, 2001 @11:20AM (#2441736) Homepage
    It's nice to see that a formerly ill-informed senator who supported key escrow has changed his evil ways. But key escrow is the least of our worries because big business wouldn't want the government to be trusted with guarding the keys that shield them from huge losses. Consider these large lobbyists:

    • Banks: they don't want the government to be able to tap into ATM networks and other encrypted communications, for the personal benefit of the government employees. There's a lot at stake for them because somebody can steal billions if they obtain certain keys. And, as they say, everybody has their price.
    • RIAA/MPAA: they don't want yet another potential source of leakage for their CSS/DVD/music encryption keys. They'd prefer to wait for some thief in Norway to find it because thieves in Norway take several months to work.
    • Telecom companies: they don't want the government to see what they're really up to. Ditto for Microsoft. They're all engaged in shady, anticompetitive practices and have learned by now to encrypt internal email and memos.

    The list goes on. Fortunately key escrow is opposed by the very people who run America - large corporations and lobbying groups. And that is why we need to worry about the crap in ATA/PATRIOT instead - because big companies don't care whether or not the government can snoop on anti-WTO activists, detain immigrants forever, or give life sentences to hackers.

    -CT

  • A welcomed relief (Score:3, Insightful)

    by yoink! ( 196362 ) on Wednesday October 17, 2001 @11:23AM (#2441753) Homepage Journal
    Some of the backlash against the terrorist attacks have been horendous. I was very relieved to see the slashdot community's interest in matters of privacy and such. It seems that most human rights that have been gained over the past century were about to be thrown out a window. It's not to say that they won't be in the future, but the gestapo in Germany began little by little and look what hapened. In the end it adds up. The same goes for the opposite end of the spectrum, but by bit it can get better.

    We need to be weary and vigilant when it comes to the policing any given government conducts on it's own population. More often that not the body being protected (as well all know too well) is that which amounts to the powers that be, all the while it is lightly covered with a transparent veil with big letters reading "public safety."

    There may be many things which need to be rethought in the comming months and years. Liberty to speak and do (responsibly) should not be one of them, and I'm glad to see others agree.
  • by fetta ( 141344 ) on Wednesday October 17, 2001 @11:29AM (#2441793)

    A college political science professor once made a statement that stuck with me - "the U.S. system of government is intentionally designed to impede the popular will." In this case, it seems to have worked. Our entire system of government is designed to slow things down so that rash and unwise decisions don't get made too quickly. It doesn't always work, but the current crisis is exactly the kind of situation our government is designed to deal with.

    The government doesn't always act as quickly as we would like - and that's a good thing.

    • by kindbud ( 90044 ) on Wednesday October 17, 2001 @01:05PM (#2442324) Homepage
      Our entire system of government is designed to slow things down so that rash and unwise decisions don't get made too quickly.

      You're right, it is much better if the rash and unwise decisions are made after a few weeks of deliberation.
      • Our entire system of government is designed to slow things down so that rash and unwise decisions don't get made too quickly.

        You're right, it is much better if the rash and unwise decisions are made after a few weeks of deliberation


        Hmm. Perhaps I should have said "Our entire system of government is designed to slow things down so that rash and unwise decisions are less likely to be enacted."
    • the U.S. system of government is intentionally designed to impede the popular will

      The popular will after 9/11 was to strike back with bloody, military vengeance against the first acceptable target. In this case, the popular will was not slowed down. Is the war a win or a loss for the mythical "system"?
      • The popular will after 9/11 was to strike back with bloody, military vengeance against the first acceptable target. In this case, the popular will was not slowed down.

        Are you kidding? The popular will after 9/11 in many quarters was to "nuke Afghanistan back into the stone-age and/or make the rubble bounce." Instead of acting immediately, the U.S. President consulted with other government officials, took time to build a coalition, and created a plan of attack that attempts to minimize civilian casualties.

        You can argue that you would have preferred different policies, but the U.S. actions in response to 9/11 were not precipitous.

        As far as your comment about "bloody, military vengence," you should use words like that more carefully. Carthage experience "bloody, military vengence" at the hands of the Romans. By historical standards, the current campaigns against Afghanisatan do not qualify.

        • the current campaigns against Afghanisatan do not qualify

          Only time will tell. We still hear estimates that vary by an order of magnitude regarding the political, military, and civilian lives lost in Iraq in the Gulf War. A couple of weeks after it's "over", nobody really cares what the death toll over there really was.

          As far as your comment about "bloody, military vengence," you should use words like that more carefully

          Maybe there's a better military definition of bloody vengeance that specifies how many must be killed before it's considered "bloody". I'm not aware of it. As far as the "vengeance" part goes, well, the Cowboy President and his people have spoken and they're coming back with heads on platters. All in the name of proven crimes, mind you.

          Just calling it as I see it.
      • At least the system held off the air strikes for 3 weeks. Maybe slightly better planning and target selection came out of that, or at least we waited long enough for it to become clear that no better ideas were forthcoming... Three weeks was a lot longer than many people considered acceptable for counting the vote last year.
  • As a former resident of NH, I can tell you that Gregg doesn't have a clue about crypto policy or much else. It's staggering that he was ever elected in the first place, but I guess Americans love to vote for idiots.

    Whatever his reasons for flip-flopping, I'm sure they have nothing to do with understanding the issues.

    • As a former resident of NH, I can tell you that Gregg doesn't have a clue about crypto policy or much else. It's staggering that he was ever elected in the first place, but I guess Americans love to vote for idiots.

      As a current resident of NH, I can tell you that Gregg is actually a pretty smart guy, even if he does get get too much of his information from special interests (but then again, what politician doesn't?). A lot of people think mandatory backdoors for encryption is a Bad Thing, and I bet several of them have told Gregg how they feel about it. An editorial [theunionleader.com] was also run in the Union Leader [theunionleader.com], the state's biggest newspaper, calling Gregg "disappointing." I'm sure there are other examples as well. Try having a little faith in your elected officials instead of blindly insulting them.

  • by po_boy ( 69692 ) on Wednesday October 17, 2001 @11:36AM (#2441828)
    I should mention that this is discussed in the Cato Institute's [cato.org] Daily Dispatch today [cato.org]. It points to a longer discussion [cato.org] (from 10/11/01 when Mr. Gregg was proposing the legislation) that you may find relevant.
  • by friday2k ( 205692 ) on Wednesday October 17, 2001 @11:37AM (#2441832)
    I guess somebody finally told him that the good guys would simply shrug their shoulders and the bad guys would have been forced into other, more secret, methods or implemented their own encrpytion. With "no backdoors" encryption in place investigators can at least gather some information about potential bad guys. E.g. that there _is_ secret information exchange taking place and/or they can detect patterns in the secret information exchange. Is there a rise in communication, followed by silence (somebody received orders, had questions and has now gone to sleep!?). You maybe not know the content of the message, but that might not be too important. Just imagine if the bad guys would now take a stego approach, doing it a little bit more clever than the "I hide a picture with content at eBay because it is soooooo secret" guys? Hide it in music, streaming videos, with your own algorithm, chunk it, ...
    Nevermind, I know that the paranoid will now say that the NSA can compute any key length anyway. Maybe. Who knows? This is not a threat to me.
    • Traffic analysis (observing patterns in when information is exchanged) has a number of potential countermeasures; these include sending dummy information (ie. sending out a stream of random numbers daily, and sometimes incorporating an encrypted message), using collating remailers with random delays and crypto wrappers (which, if done right, can make it difficult to determine to whom and from whom a message is sent, and also prevent timing-related attacks).

      For that matter, there's still on surefire way of telling when encrypted data is being moved. One could (for instance) hide it in the output of a RNG (such as one of the web-available atomic random number sources), in a compressed file (recall, the point of compression is to remove entropy -- making the data look as random as possible) or elsewhere. Strong stego also exists, and is certainly publicly available.
      In short, this bill would do nothing more than force the developers of strong crypto out of the US (those that still are here) and force the users to get sneakier. It would not, however, be effective in its overall goal.
  • I agree with the posts here that suggest that Big Money was the reason for this change of mind. It can be said generally that legislaters listen more carefully to Banks and the RIAA then they do to a bunch of grass roots free as in beer nuts like us.


    Perhaps we can use this to our advantage in other areas where we would like to influence legislation. Rather than lobbying the politicians directly, we simply need to formulate arguments for or against legislation that appeals to Big Money and lobby them instead.


    This tactic is unlikely to work with respect to the DMCA and its decendants; I can think of no argument that would persuade the RIAA et. al. that these copyright laws are bad for business. But there are many other areas of online privacy and security which could be of great interest to Big Money if framed in the correct way.

  • Hmm, does this mean that the Slashdot readership and other tech lobbies are actually having a (gasp!) effect on American politics? I myself wrote a five-page letter (by MS Word's reckoning; breaking the first rule of writing to representative: keep it short), based on the EFF template, detailing why encryption restrictions won't work, and then faxed it to all the members of the Antiterrorism Bill confernence committee. You can find the letter here [bloomington.in.us].

    I haven't gotten any responses back from any congresscritters, save for one form letter from Sen. Inouye of Hawaii. I don't really pretend that my lobbying had any great "straw" effect, but I wonder if Judd's apparent reversal of his stance means that Congress is beginning to react?

    But, IMO, the damage is already done. The proposal has been floated, and the idea is still out there. Of course, it's been out there for the last five years or so, ever since the NSA tried to silence R, S, and A from publishing their article in Scientific American (see Levy's Crypto for a full account)

  • Now there are two good things about the anti-terrorism act:

    1. It prevents the RIAA/MPAA from being judge/jurty/executionar and destroying OUR networks or our computers, and imposes severe penalties for such. Unfortunately, it also imposes severe pentalties on individual hackers for minor offenses less serious than a traffic infraction.

    2. The government has not gained the right to violate OUR right to privacy/anonymity by forcing us all to use backdoors on our encryption. The same type of thing can be said to be true of anonymity: anonymizing services also won't, by extension, be forced to give the government a backdoor entrance.

    On the other hand, unfortunately, there are some troubling concerns with this bill in terms of search & seizure & warrants.

    I believe this bill has language in it that would make a warrant granted in one state to tap someone applicable in another. This violates the sovereignty of individual states. If the government wants a nation-wide warrant to tap someone, they should go to federal court.

    The other troubling feature of this bill is that it allows the government to legitimately spy on every website we're visiting, and gives them the right to tap into more of our communications without a warrant from a judge.

    If the government wants to have the right to tap into OUR communications, they should have to go to a court and get a warrant. If they go to a state court, the warrant should be applicable only in that state; if a federal court, then throughout the nation.

    I have no problem with the government monitoring/tappign the online activity of people who'm one could reasonably believe are criminals(i.e., mobsters like John Gotti Jr). However, they should have to go to a court, and at that court, a public defender should be there to defend the accused's rights(the public defendant would simply make the case against a tap, based on available knowledge, without informing the accused that he was being considered for a wire tap -- if the accused were informed, it would be pointless).

    So, what about Sen. Judd Gregg? Well, I'll give him credit for recognizing the validity of keeping encryption strong. It is obvious that when he initially called for a ban on backdoorless encryption, he was ignorant of encryption issues and caveats. Now, it is clear that he is more informed and realizes that his formerly proposed idea would not solve any problems, and would violate civil liberties. Of course, he did not say he was ignorant -- no one wants to say they didn't know what the fuck they were talking about.

    That said, there are two reasons why politicians propose such laws which flagrantly violate civil liberties and solve no problems: (1) They were ignorant of the issues; (2) They simply did not care, and were bought off by some powerful organization(i.e., BSA, RIAA, MPAA, AAA, MS, etc).
    If the reason why politiians propose such laws is that they were ignorant of the issues -- as most all of them are on issues of science, intellectual property, and computer technology -- that can be solved by educating them. If the problem is that they did not care and were bought off, that could be solved by: a. Not re-electing them; b. Launching a publicity campaign agaisnt them.

    Of course, sometimes the reason why politicians are "ignorant of issues" is because they've been educated by self-interested lobby groups like the RIAA/MPAA/BSA/AAA/MS. These groups are large and rich, and it is natural for politicians to listen to them. In order to counteract that, we need to make politicians aware of the flaws of the positions of such groups, and the utterly self-interested nature of such groups. Any time any of these groups talks about "rights" or "benefitting the public" its bullshit. They have no concern for the public, only their bottom line; as for rights, the only rights they're concerned about are their own(i.e., the RIAA/MPAA seem to support their right to put out sexually explicit movies/songs even if these may reach kids[a right I support], but seem to think that freedom of speech is irrelevant when it comes to linking to a website with DeCSS on it, or sharing files).
    • by Anonymous Coward
      as for rights, the only rights they're concerned about are their own

      Seriously. For a laugh it's always fun to look at the RIAA's "Free Speech" website, where they talk about how explicit lyrics labels are okay but regulation is bad.

  • I think somone hit him with a cluebat.

    It's actually pretty funny .. whenever I hear politicians talking about encryption it's always email when in fact 99% of my use of encryption is either SSL or SSH.
  • by Anonymous Coward
    I used to intern in Senator Gregg's Washington Office, and I very much applaud his decision to back off this absurd position on encryption. While I am not informed about the exact circumstances surrounding his position change, I tend to think that he (and his staff) probably did react quickly and without detailed study of the issue out of genuine concern for the country. Then upon further study and consideration he has wisely and somewhat courageously backed off the issue.

    Senator Gregg is an honorable and intelligent legislator, but he is also human and as we all know to err is human. That's what happened in this case and thankfully he and his staff have realized their error and corrected it. If all legislators were as conscientious and willing to examine and retract imprudent and ineffective positions as Sen. Gregg has proved he is in this case, IMHO this country would be a much better place.

    One final note, at least when I interned on the Hill (about 4 years ago) snailmail was much more effective as a public lobbying tool than was email. The volume of e-mail (and faxes) was such that it was impossible for the staff to respond or even really note the contents of all the messages, while just about every peice of snail mail (at least from constituents) was answered. Keep this in mind for future letter campaigns.
  • Good news: the former choice is available again!
  • I just wonder if something like this was heard in the Senator's office....

    Yes Sir, back doors to cryptography do mean your child and animal porn will no longer be secure from snooping media.
  • Judd Gregg (Score:3, Funny)

    by Rosco P. Coltrane ( 209368 ) on Wednesday October 17, 2001 @12:03PM (#2441972)
    I am the only one to think this guy's name is awfully similar to Judge Dredd ?

    IN THE THIRD MILLENNIUM, THE WORLD CHANGED. CLIMATE, NATIONS, ALL WERE IN UPHEAVAL...THE INTERNET TRANSFORMED INTO A POISONOUS SCORCHED DESERT, KNOWN AS "THE CURSED EARTH"

    MILLIONS OF SLASHDOTTERS CROWDED INTO A FEW MEGA ISPS. ISPS WHERE ROVING BANDS OF HACKERS CREATED VIOLENCE THE JUSTICE SYSTEM COULD NOT CONTROL. LAW AS WE KNOW IT COLLAPSED. FROM THE DECAY ROSE A NEW ORDER. A SOCIETY RULED BY A NEW 31337 FORCE.....A FORCE WITH THE POWER TO DISPENSE BOTH JUSTICE AND PUNISHMENT.... THEY WERE THE POLICE. JURY AND EXECUTIONER ALL IN ONE.

    THEY WERE THE JUDDS.

  • Just because the guy who sponsored the bill "came to his senses" doesn't mean it's going anywhere. He won't be getting my vote anytime soon, and if he read my letter (mailed pre-anthrax scare) he'd know that by now.
  • Or does Rob Carlson come off as a big whiner...

    "(Gregg) said he was definitely supporting it. Now he says he's definitely not. Maybe he'll say he's definitely supporting it again."

    Carlson organized activists in the wake of the proposed bill. That is a Good Thing, but what did he want to happen? Nothing? Or did he want something like this to happen? Here's a tip -- if you get what you want QUIT BITCHING.
    • Damn, someone needs to move the "submit" and "preview" buttons farther apart. :^)

      To finish my point. The articles don't seem to state why the Senator changed his mind. Carlson doesn't indicate that he knows either.

      Unless proven otherwise, I would assume that he changed his mind based on input from advisors who would be (presumably) more knowledgible on the subject. I can't beleive there is a huge Crypto-lobbist organization that would pay for him to do this flip-flop.

      Okay, I'm done now...
  • by Garry Anderson ( 194949 ) on Wednesday October 17, 2001 @12:15PM (#2442062) Homepage
    I think it is because he cannot explain how putting in backdoors will stop terrorists communicating by other means e.g. personal courier and steganography.

    Government say about surveillance - "you've nothing to fear - if you are not breaking the law"

    This argument is made to pressure people into acquiesce - else appear guilty.

    It does not address the real reason, why they want this information - they want a surveillance society.

    They wish to invade your basic human right to privacy.

    This is like having somebody watching everything you do - all your thoughts, hopes and fears will be open to them.

    All your finances for them to scrutinize - heaven help you if you cannot account for every cent when they check on your taxes.

    Do not believe the lies of Government - even more money spent on Carnivore will not protect you.

    Incidentally, the United States Department of Commerce and the United Nations World Intellectual Property Organization know the solution to domain name and trademark problems.

    You will find it at WIPO.org.uk [wipo.org.uk]
  • Then:
    Two days after the Sept. 11 attacks, Gregg strode onto the Senate floor and called for a global prohibition on data-scrambling products without backdoors for government surveillance.

    Now:
    "We are not working on an encryption bill and have no intention to," spokesman Brian Hart said in an interview.

    It's obvious what happened. Somebody from the CIA phoned the senator and said "hey dumbass, we already can descramble all the encrypted messages, shut up about it already." At least that's my take on things.
  • by Anonymous Coward
    Having lived (free) 18 years in NH, I will tell you that one of the reasons Gregg might have backed down is the strong Libertarian group in that state. Many declared Republicans in that area are of the opinion that they don't want the government butting into any of their business, and this means no taxes, limited criminal laws, a citizen legislature, and a strong enforcement of the 4th amendment.

    So what this means is that Gregg would lose significant numbers of votes in his state if he continued pressing for government snooping of Internet transactions. He's not brilliant, but he's also not as dumb as a brick.
  • by Zeinfeld ( 263942 ) on Wednesday October 17, 2001 @12:28PM (#2442148) Homepage
    Gregg backed off his proposal after the Bush administration told him they had no intention of supporting him. A major reason for their position is the amount of political capital the Clinton administration spent on the scheme unsuccessfully.

    Behind the scenes a major reason for the change is the considerable change in the standing of Freeh amongst Congress and in particular the GOP. When Freeh was supporting the GOP in their impeachment machinations he was flavor of the month. Since then there have been more and more questions about his effectiveness.

    There are several in Congress who will behind closed doors blame Freeh for spending effort on his encryption obsession he should have spent stopping the 9/11 attacks. Even before 9/11 there were many complaints about FBI competence. The witholding of evidence in the Oaklahoma City bomb trials, the Wen Ho Lee incident, renewed questions about Ruby Ridge etc.

    With Freeh gone and Mueller now in charge it is very unlikely he would want to resurect a crusade that is strongly associated with a successor now widely considered to have been a failure.

  • Well, that's one bad law knocked out. Now we have to deal with Holling's (Democrat, SC) SSSCA. I'm sure there are even worse bills on the horizon =(.

    -Shade
  • ... or maybe he'll say he's definetly not sure anymore ;)
  • by crazyj ( 145672 )
    Is it just me or did anyone else misread "Judd Gregg" as "Judge Dredd?" I wondered what in the hell Sylvester Stallone would know about software backdoors...


  • "I think if they put a crypto provision in this bill, it would have passed," Froomkin said. "Look at what the administration got."


    You really gotta pay attention these days...
  • Seriously? The Senator has done something it seems people here actually consider reasonable. If you are a constituent of his, why don't you send him your thanks and tell him you did a good job? Lobbyists do not wait for a crisis; they're sending him mail 24/7.

    If you want to tell him something additional along these lines (you feel that US crypto export controls only hamper the US, etc.) tell him it as well; he's much more likely to listen to your additional arguments as long as they go along with his current course of action.

  • by agusus ( 470745 ) on Wednesday October 17, 2001 @04:03PM (#2443325) Homepage
    Wired news and other Internet sites said that Gregg was working on or drafting a bill regarding encryption. However, I wrote a newspaper article last week about the issue and so I called his office to ask some questions. His press agent told me that the internet media misreported the facts and that Gregg never was drafting a bill. He only made some comments about it on the floor. So whether you believe that or not is up to you, but I think it's logical to say that Senator Gregg was truly not working on a bill - after all, he only made this speech a few weeks ago, wouldn't have had time to start on a bill necessarily...

    Just a reminder that sometimes the sites we trust and love can present biased/inaccurate news. I love Slashdot and Wired but as they say, you can't believe everything you see/read.

How many hardware guys does it take to change a light bulb? "Well the diagnostics say it's fine buddy, so it's a software problem."

Working...