Bruce Schneier and MPAA v 2600

[Owen Blacker]

=20
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've only just seen this message.  I wonder if the MPAA realise quite
how out of context they're quoting him.  IIRC, Bruce Schneier's
objection to publication of exploits is to the publication of
security flaws that people will exploit to the detriment of
commercial systems.

Just typing that, I realise that that really would cover CSS but, for
some reason, I don't think I'd see it the same way.  My
interpretation at fault, perhaps?   :o)


O x

> -----Original Message-----
> From: Donald ramsbottom [mailto:donald@ramsbottom.co.uk]
> Sent: Saturday, February 24, 2001 4:20 PM
> To: ukcrypto@chiark.greenend.org.uk
> Subject: Bruce Schneier and MPAA v 2400
>=20
>=20
> Do you think Bruce knows he is being quoted in support of the=20
> MPAA in the
> MPAA v 2400 appeal?
>=20
> Below was lifted from "BRIEF FOR PLAINTIFFS-APPELLEES" found at:
>=20
> http://cryptome.org/mpaa-v-2600-bpa.htm
>=20
>=20
> "Bruce Schneier, Publicizing Vulnerabilities, Crypto-Gram,=20
> Feb. 15, 2000=20
>=20
>=20
> 28 Although several of Corley's amici from the field of
> cryptography, including cryptographer Bruce Schneier, criticize the
> scope of the encryption research exemption of the DMCA, =A7 1201(g),=20
> ironically, even Mr.
> Schneier has voiced strong personal opposition to the public=20
> dissemination
> of "exploits" (i.e., computer programs "that make[] use of a=20
> vulnerability
> to attack a system" (A1056)), like DeCSS, stating that "I=20
> believe that it
> is irresponsible, and possibly criminal, to distribute exploits.
> Reverse-engineering security systems, discovering vulnerabilities,
> and writing research papers about them benefits research; it=20
> makes us smarter
> at designing secure systems. Distributing exploits just make=20
> [sic] us more
> vulnerable. . . Handing computer weaponry to clueless=20
> teenagers is part of
> the problem." See Bruce Schneier, Publicizing=20
> Vulnerabilities, Crypto-Gram,
> Feb. 15, 2000 (available at
> http://www.counterpane.com/crypto-gram-0002.html)."
>=20
> Well at least he is listed as an authority for both sides, =20
> hopefully the
> courts will look at what else he has to say.
>=20
>=20
> Donald Ramsbottom BA LLb (Hons) PGdip
> Ramsbottom & Co Solicitors
> Internet and Global Encryption Law Specialists & General UK =20
> Law Matters
> 5 Seagrove Avenue Hayling Island Hampshire UK
> Tel (44) 023 9246 5931 Fax (44) 023 9246 8349
> Regulated by the Law Society in the conduct of Investment business
> Service by Fax or Email NOT accepted
>=20
>=20
>=20
> ____________________________________________________________________
> _ This message has been checked for all known viruses by UUNET=20
> delivered=20
> through the MessageLabs Virus Control Centre. For further=20
> information visit
> http://www.uk.uu.net/products/security/virus/
>=20

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0
Comment: Due to RIP, pls check for revocation before using this key!

iQA/AwUBOptx7FVeQSYAA2h0EQI27QCgn/5V9DrkJQHw9COqccxre83egDcAnjvR
QvjGNteybRlPLdnBM2HBM36l
=3DYQRH
-----END PGP SIGNATURE-----

_____________________________________________________________________
This message has been checked for all known viruses by UUNET delivered 
through the MessageLabs Virus Control Centre. For further information visit
http://www.uk.uu.net/products/security/virus/