'Person' as in Section 13

Nicholas Bohm nbohm at ernest.net
Sat, 07 Aug 1999 12:30:02 +0100 

At 02:36 AM 8/7/1999 +0100, Tom Thomson wrote:
>
>> This brings up an interesting half-way house in the requirement that keys
>be
>> released when demanded by the police.  Suppose, for example, I have enough
>> information to generate a key if, and only if, I act in collusion with any
>> two other people picked from a group of five.  Do I possess the key within
>> the meaning of the Act?   If not, who does?   Any three people of the six
>> acting together surely possess the key, but no individual or pair can
>> possibly create the key.
>
>It brings up an even more interesting question: suppose any five from seven
>can deliver the key, and each of the five claims to deliver his component,
>but the resulting key will not decrypt the message.  Then it's clear that at
>least three are lying about ther component, but four could be telling the
>truth.  There's clearly no way to make a criminal charge stick against any
>individual, and even in a civil case it can be argued that 4 have complied
>and 3 have3n't so on balance of probabilities any individual is one of the
>three. (This is different from 3 out of 5 because in the 3/5 case it's clear
>that the majority are lying and that means the balance of probablities about
>any individualk is different - in theory that's irrelevant in criminal law,
>but even there it isn't irrelevant in practice in England and Wales [but
>probably is in Scotland], and it's definitely relevant in civil law unless I
>misunderstand Enlish law badly).

There have certainly been cases where the prosecution could prove no more
than that one out of two defendants committed the offence, without being
able to prove which, and without being able to prove any conspiracy.  The
result is that both are acquitted.  The same certainly seems to apply in
your example.

A combination of key splitting, steganography and communications using
transient keys will clearly defeat this proposed legislation.  If
deployment of those techniques is in fact good for security generally, and
will be promoted by the threat of the legislation, perhaps we should
welcome it after all.

Regards,

Nicholas Bohm

Salkyns, Great Canfield,
Takeley, Bishop's Stortford CM22 6SX, UK

Phone		01279 871272	(+44 1279 871272)
Fax		01279 870215	(+44 1279 870215)
Mobile   	0860 636749  	(+44 860 636749)

PGP RSA 1024 bit public key ID: 0x08340015.  Fingerprint:
9E 15 FB 2A 54 96 24 37  98 A2 E0 D1 34 13 48 07
PGP DSS/DH 1024/3072 public key ID: 0x899DD7FF.  Fingerprint:
5248 1320 B42E 84FC 1E8B  A9E6 0912 AE66 899D D7FF