Hi, I wonder how OpenSSL users are handling the export regulations. OpenSSL is made of libraries, therefore libssl needs to call libcrypto to perform cryptographic operations with SSL keys which have been derived in libssl. How should libcrypto know whether a 128-bit SSL key contains reconstructable bits like in RC4-40, or whether it is a full- strength RC4-128 key? There are more things to observe than just this one if you want to ensure that cryptographic capabilities are limited but this one is just used as one of the more interesting examples.
The basic question amounts to: Is there an exportable version of OpenSSL? Regards, Martin ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
