Slashdot Mirror

← Back to Stories (view on slashdot.org)

CipherCloud Invokes DMCA To Block Discussions of Its Crypto System

Posted by timothy on from the at-least-the-letter-is-polite dept.

New submitter brennz writes "Cryptographers on StackExchange were discussing CipherCloud, using some promotional material from the same to provide detail. CipherCloud responded with a DMCA takedown request that some have characterized as abusive."

3 of 85 comments (clear)

  1. We know how good CipherCloud is by Anonymous Coward · · Score: 5, Interesting

    If you have to go to such extremes to cover up what people are saying about your product, your product must really suck.

  2. Re:back up again by Jeremiah+Cornelius · · Score: 5, Interesting

    There is no copyright "right" that is any equal to Human and Civil rights - including those of free speech.

    There are two broad categories I like to use in describing laws and their application. Oppressive and Protective.

    Oppressive law is mandated for the establishment and defence of Power.

    Protective law seeks the institution and restoration of Justice.

    DMCA is a prime example of oppressive law - and how tricky this distinction can be, as it masquerades itself as a measure for the protection of some natural right. In this case, the "rights" protected are - of course - merely a concession managed by the state, enacted through legislation and constitution.

    --
    "Flyin' in just a sweet place,
    Never been known to fail..."
  3. Slight nuance by Anonymous Coward · · Score: 4, Interesting

    Cryptographics? In a few hours I could conjure up cryptographic algorithms, which encrypt text in a way I could not decrypt myself in a 1000 years. Too bad I can never be sure that a cryptographic expert could read my encryption almost like plain text. Odds are that exactly something like that would happen.

    You have a healthy respect for cryptography, and that's good. However, I will point out that many standard crypto algorithms have test suites. If your crypto implementation yields the expected result for all the test cases, then you can be reasonably certain that your implementation is correct rather than having self-canceling bugs on encrypt/decrypt.

    However, then you have to ask yourself *why* you are reimplementing a standard crypto algorithm when there are multitudinous well-tested libraries available for such.

    Of course, this neglects implementation concerns like timing attacks, improperly secured key material, etc... which one would hope that the standardized, well-tested implementation libraries have already addressed insofar as possible.