[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Paper is out, electrons are in

Date: Tue, 31 Dec 1996 01:11:08 +0000
From: Jeff Williams <jwkckid1@ix.netcom.com>
Subject: Re: Paper is out, electrons are in

Kent,

  Please read below your comments.

Kent Crispin wrote:
> 
> Jeff Williams allegedly said:
> >
> > Kent,
> >
> >   Please read elow your comments.
> >
> > Kent Crispin wrote:
> > >
> > > Jeff Williams allegedly said:
> > > >
> > > > Rick,
> > > >
> > > >   Yes it does.  But the draft needs to be a bit more clear here.
> > > > It need to specify what keylength or type of digital signatures
> > > > should or can be used. I realize this is nit picking here, but if
> > > > not specified IACH will get a visit fron NSA, instructing them
> > > > just what the munitions law is.  PGP, does not conform within
> > > > that law for international communications digital signature's.
> > >
> > > Unfortunately, Mr Williams is quite confused about these issues.
> >
> >   Honestly Kent, I don't believe that you are correct in this
> > assumption.  Please review www.comsensus.com or www.rsa.com
> > for further details.  If you have some problems finding
> > this information, let me know I have several other
> > pointers and a copy of the actule law on this matter.
> 
> Perhaps you should read your own pointers, first.
> 
> >From http://www.rsa.com/rsalabs/newfaq/q149.html:
> 
> "The NSA has stated that it has no objection to the use of secure
> cryptography by U.S.  industry.  It also has no objection to
> cryptographic tools used for authentication, as opposed to privacy."
> 
> and
> 
> "NSA generally does not approve export of products used for encryption
> unless the key size is strictly limited.  It does, however, approve
> for export any products used for authentication only, no matter how
> large the key size, so long as the product cannot be converted to be
> used for encryption."

  Percisely my point kent.  PGP can be used for Encryption if using the 
RSA CSP algorythems.  I think you are only interpreting it one way.
I will admit it is ambiquous somewhat.
> 
> But that's a moot point, since international versions of PGP already
> exist.

  Yes, this is true.  ANd are not considered legal for commercial
transactions
form outside of the US and Canada.

  I can have amember or our legal department give you a call to clarify
in more detail if that will help.

Regards,

-- 
Jeffrey A. Williams
DIR. Internet Network Eng/SR. Java Development Eng.
Information Eng. Group. 
Phone :972-447-1878
E-Mail jwkckid1@ix.netcom.com

Follow-Ups:
- Re: Paper is out, electrons are in
  - From: Kent Crispin <kent@songbird.com>

References:
- Re: Paper is out, electrons are in
  - From: Kent Crispin <kent@songbird.com>

Prev by Date: Re: Thread 5: Defining the namespace (was Re: Thread 1:
Next by Date: Re: Thread 5: Defining the namespace (was Re: Thread 1:
Prev by thread: Re: Paper is out, electrons are in
Next by thread: Re: Paper is out, electrons are in
Index(es):
- Date
- Thread