[112299] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

Re: Question on export issues

daemon@ATHENA.MIT.EDU (Jon Callas)
Thu Jan 3 22:02:17 2008

In-Reply-To: <1199382737.8896.2.camel@kratos.fnordora.org>
Cc: Richard Salz <rsalz@us.ibm.com>,
 cryptography@metzdowd.com
From: Jon Callas <jon@callas.org>
Date: Thu, 3 Jan 2008 16:21:16 -0800
To: Alan <alan@clueserver.org>


On Jan 3, 2008, at 9:52 AM, Alan wrote:

>
> On Sun, 2007-12-30 at 08:30 -0500, Richard Salz wrote:
>> In my personal experience, if you are developing a mass-market  
>> item with
>> conventional crypto (e.g., SSL, S/MIME, etc ) then it is fairly  
>> routine to
>> get a commodity export license which lets you sell globally.
>>
>> Disclaimers abound, including that I'm not a lawyer and certainly  
>> don't
>> speak for IBM.
>
> My question was more on the lines of "what gets rejected", not "what
> does it take to do it".
>
> Is there some technology that they are so afraid of that they still
> won't let it ship or does it just matter who you are, not what it is?
>

They let strong crypto through all the time. I can't imagine what  
*technology* you couldn't get through. Definitely, however, there are  
*people* who couldn't get an export license because they've been bad  
in the past.

So the answer to your questions is that they're vetting who you are  
far more than what you're exporting.

	Jon


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com

home help back first fref pref prev next nref lref last post