From owner-freebsd-security  Tue Mar 28  7:29:59 2000
Delivered-To: freebsd-security@freebsd.org
Received: from lily.ezo.net (lily.ezo.net [206.102.130.13])
	by hub.freebsd.org (Postfix) with ESMTP id E7FD937BF09
	for <freebsd-security@FreeBSD.ORG>; Tue, 28 Mar 2000 07:29:52 -0800 (PST)
	(envelope-from jflowers@ezo.net)
Received: from ezo.net (c3-1f245.neo.rr.com [24.93.235.245])
	by lily.ezo.net (8.8.7/8.8.7) with ESMTP id KAA16396
	for <freebsd-security@FreeBSD.ORG>; Tue, 28 Mar 2000 10:29:33 -0500 (EST)
Message-ID: <38E0CFFC.7EF8D379@ezo.net>
Date: Tue, 28 Mar 2000 10:30:04 -0500
From: Jim Flowers <jflowers@ezo.net>
Organization: EZNets, Inc.
X-Mailer: Mozilla 4.72 [en] (Win98; I)
X-Accept-Language: en
MIME-Version: 1.0
To: freebsd-security@FreeBSD.ORG
Subject: Re: US encryption regulations and FreeBSD crypto programs
References: <Pine.OSF.4.21.0003281110030.7249-100000@hera.ik.bme.hu>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

I (my client) have (has) been able to obtain approval for a VPN Access
Controller (VIP/Link) that includes configuration of freebsd and the
skip-1.0 port under the US Company and subsidiary exclusion about a year
ago.  Paperwork and one-time review was minimal and granted quite
quickly (less than a month).  Covers multiple countries.

Paperwork available to whoever takes this on, if desired.

Jim Flowers <jflowers@ezo.net>

Mohacsi Janos wrote:
> 
> Dear Sirs,
> 
>         According to the new US encryption regulations (Jan 14, 2000) the
> massmarket encryption products, employing key lengths up to 64 bits
> require the one-time technical review and classification.
> See: http://www.cdt.org/publications/pp_6.02.shtml
> 
> And also non retail products can be exported after review, with license.
> Exporting prohibited only to 7 terrorist countries.
> 
> Some company is already taken some steps:
> http://www.microsoft.com/exporting/
> http://www.microsoft.com/windows2000/downloads/recommended/encryption/default.asp
> http://www.pgp.com/asp_set/products/tns/jump_page_011800.asp
> 
> Community of the FreeBSD should also move forward. Submitting for review
> of the FreeBSD source code, and shipping with an almost unified crypto
> stuffs of FreeBSD either US and either international users. As far as I
> know the currently used DES uses 56 bit keylength. 3DES and blowfish could
> be pushed through (Microsoft succeed with 128 bit encryption in Internet
> Explorer). The only difference between the US and International version
> would be the RSA (that could be removed in September 2000).
> 
> Are there any volunteer lawyer and FreeBSD fan, who could move forward this
> project. (Probably a lawyer from BSDI).
> 
> This way FreeBSD could be leader in the Open Source Community shipping
> open-source strong crypto products for everywhere in the world.
> 
> Thanks,
>                 Janos Mohacsi
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message