Return to BSD News archive
Newsgroups: comp.os.386bsd.questions
Path: sserve!newshost.anu.edu.au!munnari.oz.au!news.Hawaii.Edu!ames!elroy.jpl.nasa.gov!usc!cs.utexas.edu!uunet!emba-news.uvm.edu!trantor.emba.uvm.edu!wollman
From: wollman@trantor.emba.uvm.edu (Garrett Wollman)
Subject: Re: FreeBSD outside of US??
In-Reply-To: <1993Aug24.172131.5346@cm.cf.ac.uk>
Message-ID: <1993Aug24.193453.6549@emba.uvm.edu>
To: paul@myrddin.isl.cf.ac.uk
Sender: news@emba.uvm.edu
Organization: University of Vermont, EMBA Computer Facility
References: <LMJM.93Aug19143408@kea.doc.ic.ac.uk> <1993Aug19.135856.24990@gmd.de>
Date: Tue, 24 Aug 1993 19:34:53 GMT
Lines: 30
Actually, this is not quite true. It is perfectly legal to export
encryption code (DES included), provided that there is no way to use
the code to pass secret messages. That is to say, the password
encryption routines are legal---in binary form only---because the code
has been ``broken'' and performs a /one-way/ encryption. Since no
known method exists to take an encrypted password and turn it back
into the original string, then this is legal to export in binary form.
However, the source is still restricted, since it can easily be
``unbroken''.
DEC discovered this while working on exporting their Kerberos product.
(Kerberos is the network authentication system developed by MIT
Porject Athena.) They were permitted to export their product under
General License GTDA, provided that they removed any possibility of
user access to the krb_mk_priv() and krb_rd_priv() routines (which
pass secret messages over the wire) or the underlying
[p]cbc_{en,de}crypt() and string_to_key() code.
-GAWollman
--
Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ...
wollman@emba.uvm.edu | Shashish is the bonding of hearts in spite of distance.
uvm-gen!wollman | It is a bond more powerful than absence. We like people
UVM disagrees. | who like Shashish. - Claude McKenzie + Florent Vollant
--
Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ...
wollman@emba.uvm.edu | Shashish is the bonding of hearts in spite of distance.
uvm-gen!wollman | It is a bond more powerful than absence. We like people
UVM disagrees. | who like Shashish. - Claude McKenzie + Florent Vollant