Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!utgpu!water!watnot!watmath!clyde!cbatt!ucbvax!GSWD-VMS.ARPA!preece%mycroft
From: preece%mycroft@GSWD-VMS.ARPA.UUCP
Newsgroups: mod.protocols.tcp-ip
Subject: Re: My Broadcast
Message-ID: <8704081421.AA07563@gswd-vms.ARPA>
Date: Wed, 8-Apr-87 09:20:01 EST
Article-I.D.: gswd-vms.8704081421.AA07563
Posted: Wed Apr  8 09:20:01 1987
Date-Received: Sat, 11-Apr-87 06:49:20 EST
Sender: daemon@ucbvax.BERKELEY.EDU
Distribution: world
Organization: The ARPA Internet
Lines: 17
Approved: tcp-ip@sri-nic.arpa


  From: "Alan R. Hill" <ahill@cc7.bbn.com>
> My years of experience in dealing with security indicates that data
> should be encrypted whenever practical.  Relying on software or system
> adminstrators is folly.
----------
Unless you're doing all your work on a trusted workstation, to which
only you have access, encryption isn't enough.  The processor on which
the work is done has to encrypt and decrypt, meaning that the data
has to be floating around in plaintext form at some times.  If your
software is ignoraably secure, then so is your transitory plaintext.

-- 
scott preece
gould/csd - urbana
uucp:	ihnp4!uiucdcs!ccvaxa!preece
arpa:	preece@gswd-vms