On Fri, 16 Feb 2001, Patrick Li wrote:
> Thanks for the information. Does that mean there is no longer restrictions
> on using any of the cipher suites specified by TLS or SSL outside of the US?
>
> Sorry for a simple question. But is it still the case that only Canada and
> US are allowed to use browers with 128 bit encryption strength?
Who is the party who would allow one nation but not another to use an
algorithm, and punish infractions? You should check with local laws at
the point of use to find out what you are permitted to *use*. The U.S.
once had rather severe restrictions on what encryption *products* could be
*exported*, but citizens could *use* whatever would work so long as they
didn't try to send the software *itself* out of the country. (One
exception is amateur radio, which used to be *heavily* restricted as to
the nature of the signal used to modulate the carrier. This was many
years ago, and I don't know the current situation.)
The U. S. still maintains a pretense of regulation, though it is very much
relaxed. You should get advice from an attorney with experience in export
law before attempting to export from the U.S. or Canada any given
technology for secure communication.
--
Mark H. Wood, Lead System Programmer [EMAIL PROTECTED]
Make a good day.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
