From: jim bell <jimbell@pacifier.com>
Date: Sun, 22 Dec 1996 19:32:53 -0800 (PST)
To: marc@cygnus.com>
Subject: Re: [NOT NOISE] Microsoft Crypto Service Provider API
Message-ID: <199612230332.TAA29587@mail.pacifier.com>
MIME-Version: 1.0
Content-Type: text/plain


At 07:36 AM 12/18/96 -0800, geeman@best.com wrote:
>
>Microsoft had to agree to validate crypto binaries against
>a signature to make sure they weren't tampered with, in 
>exchange for shipping crypto-with-a-hole.  They will
>sign anything (theoretically) if it has the export
>papers and all.  Or without, if you affadavit it is not
>for export.
>
>They do not themselves impose any restrictions on crypto
>strength.
>I'm not expressing political position here, just conveying facts ....

What if the software involved was IMPORTED?  Moreover, is legal to export 
just the signature?

Jim Bell
jimbell@pacifier.com