Xref: utzoo comp.protocols.tcp-ip:6562 sci.crypt:1682
Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!tut.cis.ohio-state.edu!ukma!sean
From: sean@ms.uky.edu (Sean Casey)
Newsgroups: comp.protocols.tcp-ip,sci.crypt
Subject: Re: RSA Encryption on the Internet
Message-ID: <11310@s.ms.uky.edu>
Date: 21 Mar 89 22:40:37 GMT
References: <11348@ulysses.homer.nj.att.com>
Reply-To: sean@ms.uky.edu (Sean Casey)
Organization: The Leaning Tower of Patterson Office @ The Univ. of KY
Lines: 31


Jim Bidzos of RSA Data Security told me that there should be an RFC out
by early April describing the implementation of the standard.

He outlined it to me, but I don't remember it that well. It mostly
concerns the transmission of DES keys for encrypted email by using the
RSA scheme.

As far as using the RSA scheme, they are pretty liberal about granting
no-cost licenses for noncommercial use. The trick is that anyone who
uses RSA must first register their personal key with them. It costs $25
for two years.  They then encode their key in yours, and send it back.
Anyone who is granted a license for an RSA application program then has
to check any user's public key and verify that they are registered and
up to date. This is easily done by encrypting with RSA Corp's public
key. Out pops a string (I guess - he didn't say explicitly) and a date
code.

Thus it's likely that once you've registered a personal key, you can
use Internet RSA facilities at no additional cost for two years.

Hopefully, once the RFC is out, we'll have some heavy math types
writing a a really fast freely redistributable implementation.

Sean

-- 
***  Sean Casey                        sean@ms.uky.edu,  sean@ukma.bitnet
***  Who sometimes never learns.       {backbone site|rutgers|uunet}!ukma!sean
***  U of K, Lexington Kentucky, USA  ..where Christian movies are banned.
***  ``You talk the talk. Do you walk the walk?''