Private escrow key management: a method and its issues

Edward M. Scheidt; Jon L. Roberts

doi:10.1117/12.232262

12 March 1996 Private escrow key management: a method and its issues

Edward M. Scheidt; Jon L. Roberts

Author Affiliations +

Edward M. Scheidt , Jon L. Roberts
TECSEC, Inc. (United States)

Proceedings Volume 2616, Information Protection and Network Security; (1996) https://doi.org/10.1117/12.232262
Event: Photonics East '95, 1995, Philadelphia, PA, United States

ARTICLE
CITED BY
DOWNLOAD PDF SAVE TO MY LIBRARY

PERSONAL SIGN IN
Full access may be available with your subscription

Email or Username Forgot your username?

Password Forgot your password?

Show

Remember Email/Username on this computer

Remember Password

No SPIE account? Create an account
or Institutional Sign In via Shibboleth

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $14.40

Non-members: $18.00 ADD TO CART

This will count as one of your downloads.

You will have access to both the presentation and article (if available).

DOWNLOAD NOW

This content is available for download via your institution's subscription. To access this item, please sign in to your personal account.

Email or Username Forgot your username?

Password Forgot your password?

Show

Remember Email/Username on this computer

Remember Password

No SPIE account? Create an account

My Library

You currently do not have any folders to save your paper to! Create a new folder below.

Folder Name

Folder Description

Abstract

During the past few years a debate has been raging around the conflict between the rights of an individual to privacy in information to foster its competitiveness and the Government's need to access information for national security and law enforcement purposes. At the heart of the debate is the difficulty in arriving at a position whereby a robust implementation of an encryption process can be accomplished that protects sensitive private or industrial data yet insures that the government can have access to information if that information is part of a criminal conspiracy or enterprise, or other action hostile to the United States. The U.S. Government initially tendered a ciyptographic scheme known as the Clipper Escrow Key management plan. Using communication encryption technology, the government wanted to mandate an encryption process for which it maintained the key used for the decrypting of information transiting any communications path. This key would be split and distributed to escrow agents. The split key would have to be combined if the government were to use the key to decrypt and monitor criminal or other such activities. That methodology met with howls of protest from much of U.S. society (industry and private) due to a certain mistrust of the government and its handling of private information (for example, various IRS scandals). The debate has shifted from the technical solution provided by the Clipper initiative to alternate methods that defme key escrow in terms of a commercial or private entity. A NIST-sponsored key escrow meeting was held on August 17, 1995 to listen to the government's proposal to work towards a solution which industry and the international community would accept and which would provide needed security to private information. The meeting was a positive step towards resolving the conflicting issues surrounding cryptography. The government's proposal to extend the key length of any cryptographic algorithm used to 64 bits to enable export of cryptographic products more readily is a small step towards industry's desire for "good" cryptography. As a result, the government has set the stage to extend cryptography into the broader international field of electronic commerce. Privacy is still an issue and must be included in the resultant key escrow solution. Since the very onset of the debate TECSEC has espoused private key escrow as the only method that individuals, industry and the international community would accept for cryptography. A split key method has been developed that could satisfy many of the issues. The technology is called Constructive Key Management ("CKM "); the resultant product using CKM is called VEIL. VEIL is a software key management design that utilizes multiple key splits with labels as cryptographic triggers. It offers complete administrative control of the key, and it includes an inherent method to construct the key used for encrypting a file or database that results in a fixed header and audit information. By defining the roles of the escrow agent as a mix between government and private as necessary, VEIL can be applied to solve the private key escrow question.

Citation Download Citation

Edward M. Scheidt, Edward M. Scheidt, Jon L. Roberts, Jon L. Roberts, } "Private escrow key management: a method and its issues", Proc. SPIE 2616, Information Protection and Network Security, (12 March 1996); doi: 10.1117/12.232262; https://doi.org/10.1117/12.232262

ACCESS THE FULL ARTICLE

PERSONAL SIGN IN
Full access may be available with your subscription

Email or Username Forgot your username?

Password Forgot your password?

Show

Remember Email/Username on this computer

Remember Password

No SPIE account? Create an account
or Institutional Sign In via Shibboleth

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $14.40

Non-members: $18.00 ADD TO CART

PROCEEDINGS
4 PAGES

DOWNLOAD PDF + SAVE TO MY LIBRARY

GET CITATION

KEYWORDS

Internet

Cryptography

Information security

Computer security

Data processing

Network security

Databases

Heart

Astatine

Medicine

Show All Keywords

RELATED CONTENT

Design and implementation of PKI-based certification authority
Proceedings of SPIE (December 03 2015)

Interruption-free construction of a firewall for research network
Proceedings of SPIE (November 17 2000)

Secure thin client architecture for DICOM image analysis
Proceedings of SPIE (April 15 2005)

Over the horizon, connected home office (OCHO) situation management...
Proceedings of SPIE (May 06 2010)

Access and accounting schemes of wireless broadband
Proceedings of SPIE (April 28 2004)

Research of UMTS core network firewall base on IXP1200
Proceedings of SPIE (February 20 2006)

Efficient implementation of elliptic curve cryptography (ECC) on embedded media...
Proceedings of SPIE (January 18 2004)

Subscribe to Digital Library

Receive Erratum Email Alert

Erratum Email Alerts notify you when an article has been updated or the paper is withdrawn.

Visit My Account to manage your email alerts.

Email or Username Forgot your username?

Password Forgot your password?

Show

Remember Email/Username on this computer

Remember Password

No SPIE account? Create an account
or Institutional Sign In via Shibboleth

The alert successfully saved.

Visit My Account to manage your email alerts.

The alert did not successfully save. Please try again later.

Edward M. Scheidt, Jon L. Roberts, "Private escrow key management: a method and its issues," Proc. SPIE 2616, Information Protection and Network Security, (12 March 1996);

Include:

Citation Only

Citation & Abstract

Format:

RIS (Zotero)

EndNote

BibTex

Medlars

ProCite

Ref Works

Reference Manager

Show All Keywords

Keywords/Phrases

Search In:

Publication Years