Privacy and Security

O negligence! ... what cross devil made me put this main secret in the packet I sent the king? Is there no way to cure this? No new device to beat this from his brains?
Shakespeare's King Henry VIII, act 3, scene 2, quoted in Network Security by Kaufman, Perlman and Speciner
It is the invariable habit of bureaucracies, at all times and everywhere, to assume...that every citizen is a criminal. Their one apparent purpose, pursued with a relentless and furious diligence, is to convert the assumption into a fact. They hunt endlessly for proofs, and, when proofs are lacking, for mere suspicions. The moment they become aware of a definite citizen, John Doe, seeking what is his right under the law, they begin searching feverishly for an excuse for withholding it from him.
--H. L. Mencken

PGP

I have several active PGP/GPG public keys:

pub 1024D/5CF7F947 2001-11-29 Phil Karn <karn@ka9q.net>
Key fingerprint = 985A 1BC1 B100 4DA8 6192 D4B5 AD30 D78E 5CF7 F947

pub 1024D/C2B21E98 2001-11-29 Phil Karn (Qualcomm business only - use karn@ka9q.net for personal stuff) <karn@qualcomm.com>
Key fingerprint = 2EAD DB39 D036 F808 CE68 191A E407 018D C2B2 1E98

pub 1024R/DA0EDC81 1994-07-25 Phil Karn <karn@qualcomm.com>
Key fingerprint = 65 78 AF 09 6E 86 70 B5 10 79 38 4B 28 E6 92 06
uid Phil Karn <karn@unix.ka9q.ampr.org>
uid Phil Karn <karn@ucsd.edu>

The first two are recently generated DSA/El-Gamal keys for use with GPG or newer versions of PGP. The second two are RSA keys for use with older versions of PGP. They are very widely signed, and have signed many other keys, including my newer ones.

Please use the newer keys if you can. (Note that my preferred email address at home is "karn@ka9q.net". I have been forced to retire "karn@ka9q.ampr.org" and "karn@unix.ka9q.ampr.org" due to the Klez and SoBig.F email worms. See this rant for the gory details.)


Fast DES code

I have translated the public domain DES/triple DES code in the back of Applied Cryptography into highly tuned assembler for the Intel 386/486/Pentium processors. The single DES code encrypts or decrypts at about 10.7 megabits/sec on a 90 MHz Pentium in 32-bit protected mode. Along with a portable C version the package includes two separate assembler versions: one in Borland C++ inline assembler for execution in 16-bit (real) mode and another in GNU "as" format for 32-bit (protected) mode.

You can get this code here

Back to Phil Karn's Home Page

Last updated: 11 Sep 2003