Hacker News new | past | comments | ask | show | jobs | submit login

"stole"



Yes, stole. As repeatedly evidenced - most recently with the Gemalto documents - the NSA far prefers to obtain keys surreptitiously than to go through the trouble of legally compelling corporations to provide them.


No corporation would continue to use a private key they divulged to outside sources, there is no reason to other than a minor syncing headache.


Looking at the "Lavabit" incident, there's obviously some legal framework that allows a government entity in the USA to force a company to surrender a copy of the private key used for email encryption.

If said company would change the private key, obviously the same legal framework can be used to get this new key, in turn. So it's fruitless.

Of course, if it's an "inofficial" leak, a revocation and renewal of keys makes sense.


Issuing an NSL is not really "trouble" for them. As we have seen now countless of times...


The fact that you have seen it is the trouble.


Note the 'N'stands for 'National' and Gemalto is not American.


So? Listed company, locations in TX.

http://www.gemalto.com/companyinfo/offices-locator




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: