OpenSSL is "publicly available code" and thus has an export exemption. Things linked with it, however, may not be, depending on their configuration.
-Kyle H On Thu, May 28, 2009 at 1:05 PM, Bob Bell <rt.bob.b...@gmail.com> wrote: > Folks - > > I have a basic question relative to the FIPS openSSL lib and US export > control law. As I understand it, in order for the openSSL lib to run as a > FIPS certified module, it must be configured to be loaded as a dynamically > linked library. If that is so, how do you get a export classification of > less than RESTRICTED since the library contains strong crypto, and the lib > could be used to encrypt user data at rates which exceed the positive list > restrictions? > > Bob Bell > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
