Can you provide a citation to some authority for export restrictions on IPv6? I have not heard that before and find it surprising (though not impossible). That would be troubling, because IPsec in and of itself (and by association IPv6) does not necessarily contain any cryptographic code, although an implementation might. Also, not all algorithms would be subject to export control. Nothing in IPv6 or IPsec compels an implementor to include any restricted cryptographic code.
I am definitely not a cryptography expert, nor am I an authority on US export regulations. However, in my day job I deal with IPv6 standards for US DoD and interact with a lot of vendors. I don't recall this coming up with any vendors, but if there is a chance this will be an issue, I need to do some homework. In particular, for DoD use we may require more advanced algorithms (see RFC 4869 and http://www.nsa.gov/ia/industry/crypto_suite_b.cfm) and I don't know what the restrictions on export of that code would be. Ed J. Mike Taylor wrote: > > And while it isn't a surmountable problem > > > > 5. We are being forced to treat all of our IPv6 enabled protocols such > > as FTP as encryption items by the U.S. export authorities because > > the U.S. government thinks they must be since IPv6 "includes > > security". It's just plain silly since our IPv6 is no different > > than our IPv4 - both get all their security from our IPsec which > > is sold separately. But we can't convince them otherwise because it > > has been mandated that all IPv6 nodes shall support IPsec. > > We can sell our IPv6 code without any trace of IPsec save for a few > > lines of interface code that are #ifdef'd out when IPsec isn't present > > and yet our IPv6 stack and worse yet, all of the socket-layer apps > > that support IPv6, are viewed as encryption items. Good grief. > > > > Regards, > > > > Mike Taylor > > > > > R, > > > Dow > > > > > > > > > ------------------------------ > > > > > > _______________________________________________ > > > ipv6 mailing list > > > [email protected] > > > https://www.ietf.org/mailman/listinfo/ipv6 > > > > > > > > > End of ipv6 Digest, Vol 46, Issue 33 > > > ************************************ > > ------------------------------------------------------------------------ > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > [email protected] > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > -------------------------------------------------------------------- > -------------------------------------------------------------------- IETF IPv6 working group mailing list [email protected] Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
