From: "Trei, Peter" <ptrei@securitydynamics.com>
Date: Fri, 9 Jan 1998 04:13:12 +0800
To: "'David Honig'" <honig@otc.net>
Subject: RE: MS Server Gated Crypto: strong encryption w/ exportable browsers if the server is US-OK
Message-ID: <6B5344C210C7D011835C0000F80127668B15D0@exna01.securitydynamics.com>
MIME-Version: 1.0
Content-Type: text/plain




Netscape got this deal quite some time ago, so it's hardly a special
priviliege for MS. 
It lets certain (trusted by the US government) servers to use strong
encryption with US
products outside of the US.

Peter Trei
Disclaimer: I am not speaking for my employer.

> ----------
> From: 	David Honig[SMTP:honig@otc.net]
> Reply To: 	David Honig
> Sent: 	Thursday, January 08, 1998 12:02 PM
> To: 	cypherpunks@toad.com
> Subject: 	MS Server Gated Crypto: strong encryption w/ exportable
> browsers if the server is US-OK
> 
> 	
> The jist of
> http://eu.microsoft.com/industry/finserv/m_finserv/m_fordev_g.htm
> is, MS has US permission to export a DLL containing 128-bit SSL
> *worldwide*
> since
> the encryption is enabled IFF there's a Verisign "SGC certificate" on
> the
> *server*.
> This apparently will work with Netscape servers in addition to IIS.
	[...]
> ------------------------------------------------------------
>       David Honig                   Orbit Technology
>      honig@otc.net                  Intaanetto Jigyoubu
> 
> 	"How do you know you are not being deceived?" 
> 	---A Compendium of Analytic TradeCraft Notes, 
> 	Directorate of Intelligence, CIA
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
>