[2092] in Kerberos
Re: is kadmind exportable as a binary? if so, begging letter.
daemon@ATHENA.MIT.EDU (Theodore Ts'o)
Thu Aug 13 12:34:45 1992
Date: Thu, 13 Aug 92 12:04:59 -0400
From: tytso@Athena.MIT.EDU (Theodore Ts'o)
To: jim@cs.strath.ac.uk
Cc: kerberos@Athena.MIT.EDU
In-Reply-To: Jim Reid's message of 13 Aug 92 10:45:47 GMT,
Date: 13 Aug 92 10:45:47 GMT
From: jim@cs.strath.ac.uk (Jim Reid)
[The DoC also doesn't realise that DES is in the Public Domain - it's
a US Federal standard for f*ck's sake - and there are many openly
published descriptions and implementations of DES circulating around
the world.]
Good luck in getting your Kerberos troubles sorted. Methinks you might
have to bend the rules and hope Uncle Sam turns a blind eye?
Just to set the record straight; it's not just the United States. Any
of the twenty or so countries who have signed the COCOM treaty will have
such restrictions. The COCOM treaty basically says that any
cryptographic material will be treated as *munitions*, and you are not
allowed to export munitions to another country --- even including
to another country which has signed the COCOM treaty --- without an
export license.
So as far as the COCOM agreement is concerned, trying to export
cryptographic materials is the same as trying to export a M-16 machine
gun, and F-15 fighter jet, or other implements of distruction. Also
note that anything which does adaptive routing (read: TCP/IP) may also
fall under these export restrictions, since they could be used by some
enemey state (such as Iraq) to make it harder for bombers to disrupt
their Command and Control systems.
Just be thankful you're not living in France, where it's illegal to
*import* cryptographic material, and where it is illegal to use any
cryptographic algorithms unless you provide copies of all the keys you
use to the French Secret Service in advance.
Disclaimer: this should not be considered legal advice; if you have
concerns about being thrown into jail for being an arms smuggler, you
should consult a knowledgeable attorney for more authoratative
information.
- Ted
P.S. Have a nice a day. :-)
