RIP FOR INDIVIDUAL RIGHTS: HOME OFFICE RESPONSE TO UKCRYPTO

Ian G Batten I.G.Batten at ftel.co.uk
Mon, 20 Mar 2000 08:29:11 GMT 

This is a multi-part message in MIME format...

------------=_953540946-5636-0
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Content-Md5: V2UPl568ejnOVcn/X9E7AQ==

> >lacks the means necessary to do so. I know that I might have the right
> >to a phone call when nicked, but I'm less sure that I have the right to
> >Internet access while warming the inside of the police station.
>=20
> I misread your point, and agree with you.

Having in the dim and distant, when PGP was new, generated a key and
forgotten the passphrase, I now keep a revocation certificate for my
current key on line, en clair: for my purposes, this does not provide
any great risk, as the worst that can happen is my key gets revoked
without my knowledge.  One can imagine a million and one dead man's
handles that could be easily implemented via a web page --- indeed, a
``visit this page once a [day|week|month] and verify your identity, or
we issue a revocation certificate'' would make a nice service.

>=20
> >However, would the Bill prevent the suspect from telling his lawyer to
> >revoke the key on the suspects behalf (ie the lawyer has a copy of the
> >challenge passphrase, or whatever)? Almost certainly not.
>=20
> I agree.

In which case, you just lodge a cleartext revocation certificate with
you solicitor.  You needn't even tip him off: you could sign a document
which says ``in event of my death, incapacitation or being visited by my
brief in the slammer, please issue this certificate''.

> It is indeed an interesting aspect of key security how to provide for
> revocation after arrest, and one not much touched on that I have noticed.

Surely just telling your solicitor/wife/husband/employer to issue a
revocation certificate if you are arrested would be sufficient?

ian

------------=_953540946-5636-0
Content-Type: application/pgp-signature
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
Content-Description: PGP Information

-----BEGIN PGP MESSAGE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: NqiDG+XEujmJA9tA0O1EuAY8kx8Y22LM

iQB1AwUBONXhU8oy0yij3IvtAQGipwL/R6GnrPx+PdAD4J2YqgJgQg9LFmJhLtvK
+cveoRhxxQEZ4r04OhMG814fR1G/cFG5/gEbbGH3GGx8ea8e0XZ+6qWwZrmyoMjV
QcBvI0zIonZ0TeX0hookhvbZ5ENBKA9P
=voTe
-----END PGP MESSAGE-----
------------=_953540946-5636-0--