Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Sales of unused IPv4 addresses gathering steam
•	Obama orders agencies to optimize Web content for mobile
•	Are CEOs getting the social media thing?
•	Google's Android did not infringe Oracle patents, jury finds
•	HP to trim 27,000 jobs as part of restructuring program
•	VMware acquires desktop management company Wanova
•	Privacy advocates fear CISPA
•	Groups launch gigabit-per-second broadband project
•	Windows 8 touchscreen devices to be priced higher, Dell says
•	Google warns users infected with DNSChanger as Web outage nears
•	SAP buying e-commerce vendor Ariba for $4.3 billion
•	Brocade outlines its SDN approach
•	Managing Mobile Mania
•	Jailbreak of Apple iOS 5.1.1 due 'in days'
•	Google has finally closed Motorola Mobility acquisition
•	More breaking news

/

Charge it to the NSA

By Ellen Messmer
Network World, 7/20/98

The National Security Agency (NSA), with an estimated 40,000 employees, works hard to make U.S. military encryption devices rock solid, the agency is inclined to weaken commercial encryption when it can because strong encryption impedes the agency's mission of data collection.

In one instance, the spy agency forced MasterCard International, Inc. to dumb down the Secure Electronic Transaction (SET) credit-card encryption standard.

When MasterCard first thought of creating SET for credit-card encryption, "we ran over to the government to tell them what we wanted to do," said John Wankmuller, MasterCard's principal in charge of electronic commerce. However, the NSA quickly threw a damper on the company's enthusiasm. "They told us what we wouldn't do," Wankmuller said.

The NSA nixed the idea that SET should be able to encrypt the customer's entire purchase information, limiting the encrypted fields to the account number, amount and the expiring date, Wankmuller said. "In the end, it's a very small amount of data that gets encrypted."

But in other areas, the NSA has also had less confrontational contact with industry, too.

The agency played the lead role at the IETF in developing two protocols, one called IP Security and the other called Internet Key Exchange, which is gaining wide acceptance in products and among users in the automotive industry.

RELATED LINKS

Back to main story.

Apply for your free subscription to Network World. Click here. Or get Network World delivered in PDF each week.

Request a reprint or permission to use this article.

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.