Date: Tue, 28 Mar 2000 11:34:45 +0200 (MET DST) From: Mohacsi Janos <mohacsi@ik.bme.hu> To: freebsd-security@freebsd.org Subject: US encryption regulations and FreeBSD crypto programs Message-ID: <Pine.OSF.4.21.0003281110030.7249-100000@hera.ik.bme.hu>
next in thread | raw e-mail | index | archive | help
Dear Sirs, According to the new US encryption regulations (Jan 14, 2000) the massmarket encryption products, employing key lengths up to 64 bits require the one-time technical review and classification. See: http://www.cdt.org/publications/pp_6.02.shtml And also non retail products can be exported after review, with license. Exporting prohibited only to 7 terrorist countries. Some company is already taken some steps: http://www.microsoft.com/exporting/ http://www.microsoft.com/windows2000/downloads/recommended/encryption/default.asp http://www.pgp.com/asp_set/products/tns/jump_page_011800.asp Community of the FreeBSD should also move forward. Submitting for review of the FreeBSD source code, and shipping with an almost unified crypto stuffs of FreeBSD either US and either international users. As far as I know the currently used DES uses 56 bit keylength. 3DES and blowfish could be pushed through (Microsoft succeed with 128 bit encryption in Internet Explorer). The only difference between the US and International version would be the RSA (that could be removed in September 2000). Are there any volunteer lawyer and FreeBSD fan, who could move forward this project. (Probably a lawyer from BSDI). This way FreeBSD could be leader in the Open Source Community shipping open-source strong crypto products for everywhere in the world. Thanks, Janos Mohacsi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.OSF.4.21.0003281110030.7249-100000>