Security on the Internet is again an issue following the terrorist attacks in the US.
The USA Act was rushed through within six weeks, replacing a more moderate Patriot Act, which could result in Draconian surveillance.
David Blunkett, the home secretary here, has revealed that new anti-terror laws in the UK will increase the powers of last year’s Regulation of Investigatory Powers Act.
The CIA and Scotland Yard having access to e-mails may not worry some businesses. However, the European Parliament recently reported into a US eavesdropping system, which European businesses suspected had been used to gain its secrets. The parliament did not rule on the claims, but recommended businesses make their e-mails secure.
All Internet traffic is at risk while in transit between servers and the people who send and receive data. The answer is to encrypt it (TTJ October 9, 1999). Most computer software comes with 40-bit encryption and a standard is 56-bit.
It is rumoured the US can crack that level, but most encryption that is sold is usually 128-bit. There are all kinds of estimates about how long it would take to break it, however, any level of encryption would realistically safeguard most companies’ financial data.
Microsoft Outlook Express can easily incorporate security and there are web-based services, such as Hushmail that provides a commercial version of digital signatures with 128-bit protection for about £45 a year. There are also specialist services for taking credit card details online, including some that act as middlemen, receiving payment from customers and sending it on to the business.
