From: SINCLAIR  DOUGLAS N <sinclai@ecf.toronto.edu>
Date: Sat, 23 Dec 1995 04:02:35 +0800
To: junger@pdj2-ra.F-REMOTE.CWRU.Edu (Peter D. Junger)
Subject: Re: Remote use=export?
In-Reply-To: <m0tT7SA-0004JWC@pdj2-ra.F-REMOTE.CWRU.Edu>
Message-ID: <95Dec22.121656edt.1000@cannon.ecf.toronto.edu>
MIME-Version: 1.0
Content-Type: text/plain


> Jeff Gehlbach writes:
> 
> : -----BEGIN PGP SIGNED MESSAGE-----
> : 
> : I apologize if this is a dead horse, but...
> : 
> : Is granting use of crypto software running in the US to a remote user
> : outside the US considered exportation?  For example, if allow my friend in
> : Paris to use a PGP binary residing and running on my PC in Washington, is
> : either of us violating any ITAR or similar restrictions?
> 
> Nothing about the ITAR is unambiguous, but since what is forbidden is
> ``exporting'', which includes ``disclosing to foreign persons'', and
> since use is not forbidden, it is hard to see how what you suggest
> could violate the ITAR.  (And I don't know of any other U.S. law or
> regulation that it could violate.)

If memory serves, Digital Equipment Corp was obliged to remove a
demonstration supercomputer from the net.  The argument was that
Iraqis could telnet into it (it had free guest accounts) and run
nuclear weapons simulations on it.  Some of the list members
probably remember the details.