“Walsh Report (cryptography)”的意思、由来-开放百科全书

The Walsh Report was an Australian cryptography policy review undertaken for the Australian government by Gerard Walsh, initially released in 1996 and then withdrawn before its sale to the public. Electronic Frontiers Australia (EFA) obtained a redacted copy under freedom of information laws and published it on EFA's website. Subsequently, an unredacted copy was found and the redacted parts were added to the EFA copy.

Policy review

The Walsh Report was an Australian cryptography policy review undertaken at the request of the Secretary of the Attorney-General's Department^[1] by Gerard Walsh, the former deputy director of the Australian Security Intelligence Organisation (ASIO).^[2] The report included a broad analysis of cryptography issues from an Australian context.^[3]

The report, titled Review of Policy relating to Encryption Technologies, is popularly called the Walsh Report.^[2]

In his report Walsh found that there was a lack of coordination in the government over the establishment of cryptography policy. Walsh also reported no clarity as to which department and which minister was responsible for cryptographic policy. Consequently, there was a danger that policy would be developed without being coordinated.^[2]

The main advice given by Walsh in the report was that major legislative action to safeguard law-enforcement or national security was not required at the time.

No specific options were recommended in the report for legislation on cryptography, nor did the report recommend mandatory key recovery.^[4]

History

Background

Walsh was invited to undertake his review following on from the Barrett Report, which concluded: "while Australian agencies all report that encryption has not been a problem to date, it is likely to become one in the future."^[1]

Initial issue

Deposit copies

After being printed, deposit copies of the report were lodged by the Australian Government Publishing Service (AGPS)^[5]{{dead link|date=July 2017}} with around 40 university and public libraries under a free deposit scheme.^[6]

Embargo

The report was listed for sale in January 1997 by AGPS. Three weeks later Electronic Frontiers Australia (EFA) enquired why it was not actually available.^[1]

In February 1997,^[4] before the Walsh Report was publicly released, the Australian Attorney-General's Department embargoed it and withheld the report from commercial sale.^[2]^[5]

FOI request

In March 1997 EFA applied for the release of the Walsh Report under the Freedom of Information Act 1982.^[1]^[5]^[7]^[8]

Initially the request was denied. Following a review that was requested by EFA,^[1] in June 1997^[1] EFA obtained a copy of the Walsh Report that had been redacted^[2]^[3] on national security,^[3] defence, international relations, internal working document, law enforcement and public safety grounds.^[1]

Discovery of deposit copies

In December 1998^[5] an uncensored copy of the Walsh Report was discovered in the State Library of Tasmania by Nick Ellsmore, a university student in Hobart.^[2]^[6]^[7]^[9]^[10] Ellsmore alerted EFA to the availability of the report.^[1]

Publication of unredacted version

By comparing the redacted and unredacted copies it was possible to identify the censored sections of the report.^[9]

EFA added the redacted parts to its copy on the Internet,^[2] and highlighted them in red.^[1]

Following the discovery of the uncensored copies of the Walsh report, The Australian newspaper revealed the censored recommendations.^[6] Release of the complete report was also covered by Hobart's Mercury, Melbourne's Sun-Herald, The Sydney Morning Herald, many Internet news sites and radio stations in Perth and Sydney.^[1]

Recall of deposit copies

On 10 February 1999, after The Australians revelations, the Australian Government Information Service (AusInfo), the government publisher, wrote to the deposit libraries. The AusInfo letter, said that the "Attorney-General's Department wants all copies recalled" and asked that copies of the report be returned to AusInfo.

A spokesperson for Daryl Williams, the Attorney-General, said that the release of the Walsh report had been discussed with AusInfo, but denied that the Government initiated the recall.

In February 1999 EFA cryptography committee chairman, Greg Taylor, said: "The bumbling attempts to censor the [Walsh] report have only served to focus international attention on it".^[6]

Censored parts

References

1. ^¹²³⁴⁵⁶⁷⁸⁹¹⁰¹¹{{cite web|first1=Nick|last1=Ellsmore|url=http://cryptome.org/crypto97-ne.htm|title=Cryptology: Law Enforcement & National Security vs. Privacy, Security & The Future of Commerce.|website=cryptome.org/|date=4 July 1999|accessdate=25 August 2014}}
2. ^¹²³⁴⁵⁶⁷⁸⁹{{cite book|title=Cryptography And Liberty 1999: An International Survey of Encryption Policy|date=1999|publisher=Electronic Privacy Information Center|isbn=1893044033|url=http://gilc.org/crypto/crypto-survey-99.html|accessdate=10 July 2014}}
3. ^¹²{{cite book|first1=Bert-Jaap|last1=Koops|title=The Crypto Controversy: A Key Conflict in the Information Society|date=1998|publisher=Kluwer Law International|isbn=9041111433|page=2|url=https://books.google.com/books?isbn=9041111433&dq=%22electronic+frontiers+australia%22|accessdate=22 June 2014}}
4. ^¹²{{cite web|first1=Bert-Jaap|last1=Koops|url=http://www.cryptolaw.org/cls2.htm#aus|title=Crypto Law Survey : Australia|website=cryptolaw.org/|date=February 2013|accessdate=25 August 2014}}
5. ^¹²³{{cite news|title=Australia - Walsh report on global cryptography debate|url=http://www2.echo.lu/legal/en/news/9901/chapter11.html#1|accessdate=22 August 2014|work=EU Legal Advisory Board News|date=January–February 1999|quote=In December 1998, several uncensored copies of the Walsh Report, which constitutes an important review of Australian cryptography policy, were found in public and university libraries in Australia. These are believed to be deposit copies lodged by the Australian Government Publishing Service (AGPS) after the report was printed but before the 1997 decision by the Attorney-General's Department to withhold it from commercial sale. In March 1997, Electronic Frontiers Australia (EFA), applied for release of the report under the 1982 Freedom of Information Act.}}
6. ^¹²³⁴{{cite news|first1=Dan|last1=Tebbutt|title=Canberra suppresses IT report|url=http://technology.news.com.au/techno/4186000.htm|accessdate=20 August 2014|work=news.com.au|date=23 Feb 1999|archiveurl=https://web.archive.org/web/19990427024303/http://technology.news.com.au/techno/4186000.htm|archivedate=1999-04-27}}
7. ^¹{{cite news|first1=Roulla|last1=Yiacoumi|title=Hidden report reveals crypto paranoia|url=http://newswire.com.au/9901/crypto.htm|accessdate=22 August 2014|work=APC Newswire|date=13 January 1999|quote=A university student in Tasmania has stumbled across a pivotal government report on cryptography which was mysteriously withdrawn from public view two years ago. ... Online civil liberties group Electronic Frontiers Australia applied for the report's release under the Freedom of Information Act in March 1997.}}
8. ^¹{{cite book|first1=Margaret|last1=Jackson|first2=Gordon|last2=Hughes|title=Hughes on data protection in Australia|date=2001|publisher=Lawbook Company|isbn=0455217270|page=319|url=https://books.google.com/books?id=8Xw_AQAAIAAJ&dq=%22electronic+frontiers+australia%22|accessdate=22 June 2014}}
9. ^¹²{{cite news|title=Censored Report Recommends Australian Police Hack Web Sites|url=http://australia.internet.com/aus-news/1999/01/0401-censored.html|accessdate=22 August 2014|work=australia.internet.com|date=4 January 1999|quote=Law enforcement agencies in Australia ought to be able to "hack" into corporate computer systems and change proprietary software to enable monitoring of communications, according to a 1996 report which had been censored by the Australian government but recently uncovered by a university student.}}
10. ^{{cite news|first1=Matthew|last1=Rogers|title=Student exposes spying plans|url=http://technology.news.com.au/techno/4352808.htm|accessdate=22 August 2014|work=The Mercury|date=15 January 1999|quote=A HOBART university student has unearthed secret Federal Government plans to let Australia's top spy agencies hire computer hackers to break into the PCs of suspects.}}