| | Indias encryption issues lie with enterprises
India is saying to enterprise & individuals that if you wish to communicate while within Indias borders using email, messenging etc, we must be able to monitor your communications to protect our citizens from the bad guys.
Isn't Indias request impossible for RIM to comply with without the enterprises assistance i.e., encryption keys?
Since RIMs system is set up the way it is for BES users i.e., only the customers have thier encryption keys, wouldn't initial lawful access requests or requests for encryption keys be better directed to the enterprises themselves? This would take RIM out of the middle.
Presumably if is to be law that the Indian gov't has real time access to enterprise emails, enterprises must submit to this willingly if they want email service while in India. It follows that how gov'ts obtain access in RIMs case may involve a request to each enterprise directly. Let it be up to each enterprise to comply with the request on thier own. In this scenario RIM is not in a quandry of trying to serve both parties' interests.
What will happen if enterprises use alternate encryption techniques outside of BES? Presumably they would be in the same boat & be subject to scrutiny or shut down.