1996-01-25 - Re: Crippled Notes export encryption

Header Data

From: Derek Atkins <warlord@MIT.EDU>
To: David Mazieres <dm@amsterdam.lcs.mit.edu>
Message Hash: 1c135cb9d7cfdbd932b27fc85af1ec44f6de02975bf47fceeb21edfae152aca7
Message ID: <199601250034.TAA09745@toxicwaste.media.mit.edu>
Reply To: <199601242346.SAA14838@amsterdam.lcs.mit.edu>
UTC Datetime: 1996-01-25 05:47:25 UTC
Raw Date: Thu, 25 Jan 1996 13:47:25 +0800

Raw message

From: Derek Atkins <warlord@MIT.EDU>
Date: Thu, 25 Jan 1996 13:47:25 +0800
To: David Mazieres <dm@amsterdam.lcs.mit.edu>
Subject: Re: Crippled Notes export encryption
In-Reply-To: <199601242346.SAA14838@amsterdam.lcs.mit.edu>
Message-ID: <199601250034.TAA09745@toxicwaste.media.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain


> So where exactly do they draw the line?  You can still construct your
> software in such a way that there is a clean boundary between the
> crypto stuff and the rest.

The line is drawn, AFAIK, at the actual crypto routines.  You cannot
export the crypto routines, and the functions that call the crypto
routines.

> For example, could you have an application with a  function:
> 
> 	authenticate_user (int file_descriptor)
> 
> which in the exportable version sends a password, and in the domestic 
> version constructs some sort of authenticator?

Yes.  In fact, this is what Bones did.

> Could you have an xdr-like function which on in an exportable version
> just does argument marshaling and in a domestic version also encrypts?

Yes.  However the exported code cannot have the encryption hooks
in the code.

> How exactly are crypto-hooks defined?  This restriction seems orders
> of magnitude more bogus than even the ban on exporting actual
> encryption.

Very vaguely.  If I have a function that does something like this:

authenticate (args)
{
	...

	des_encrypt ();
	...
}

I would have to remove the des_encrypt() call from the authenticate()
routine before it can be exported...

-derek

Thread

• Return to January 1996

• Return to “Alex Strasheim <cp@proust.suba.com>”
• Return to “David Mazieres <dm@amsterdam.lcs.mit.edu>”
• Return to “Derek Atkins <warlord@MIT.EDU>”
• Return to “djw@vplus.com (Dan Weinstein)”
• Return to “Herb Sutter <herbs@connobj.com>”
• Return to “iagoldbe@calum.csclub.uwaterloo.ca (Ian Goldberg)”
• Return to “Jeff Barber <jeffb@sware.com>”
• Return to “Jeff Weinstein <jsw@netscape.com>”
• Return to “m5@dev.tivoli.com (Mike McNally)”
• Return to “michael shiplett <walrus@ans.net>”
• Return to “Mike Gurski <mgursk1@gl.umbc.edu>”
• Return to “Mike Tighe <tighe@spectrum.titan.com>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”
• Return to “s1018954@aix2.uottawa.ca”

• Return to “Ulf_Moeller@public.uni-hamburg.de (Ulf Moeller)”

• 1996-01-24 (Wed, 24 Jan 1996 15:25:36 +0800) - Re: Crippled Notes export encryption - Herb Sutter <herbs@connobj.com>
  • 1996-01-23 (Tue, 23 Jan 1996 23:15:33 +0800) - Re: Crippled Notes export encryption - Mike Tighe <tighe@spectrum.titan.com>
  • 1996-01-23 (Wed, 24 Jan 1996 00:38:07 +0800) - Re: Crippled Notes export encryption - “Perry E. Metzger” <perry@piermont.com>
    • 1996-01-23 (Wed, 24 Jan 1996 04:59:34 +0800) - [ITAR] Re: Crippled Notes export encryption - s1018954@aix2.uottawa.ca
    • 1996-01-23 (Wed, 24 Jan 1996 07:07:59 +0800) - Re: Crippled Notes export encryption - Alex Strasheim <cp@proust.suba.com>
    • 1996-01-24 (Wed, 24 Jan 1996 12:04:03 +0800) - Re: Crippled Notes export encryption - djw@vplus.com (Dan Weinstein)
    • 1996-01-24 (Wed, 24 Jan 1996 22:27:59 +0800) - Re: Crippled Notes export encryption - m5@dev.tivoli.com (Mike McNally)
  • 1996-01-24 (Wed, 24 Jan 1996 17:54:03 +0800) - Re: Crippled Notes export encryption - Jeff Weinstein <jsw@netscape.com>
    • 1996-01-24 (Thu, 25 Jan 1996 00:19:38 +0800) - Re: Crippled Notes export encryption - Mike Tighe <tighe@spectrum.titan.com>
      • 1996-01-26 (Sat, 27 Jan 1996 01:29:01 +0800) - Re: Crippled Notes export encryption - Jeff Weinstein <jsw@netscape.com>
        • 1996-01-25 (Thu, 25 Jan 1996 23:49:46 +0800) - Re: Crippled Notes export encryption - Mike Tighe <tighe@spectrum.titan.com>
          • 1996-01-25 (Fri, 26 Jan 1996 00:24:46 +0800) - Re: Crippled Notes export encryption - Jeff Barber <jeffb@sware.com>
            • 1996-01-25 (Fri, 26 Jan 1996 00:30:50 +0800) - Re: Crippled Notes export encryption - Mike Tighe <tighe@spectrum.titan.com>
    • 1996-01-25 (Thu, 25 Jan 1996 13:44:21 +0800) - Re: Crippled Notes export encryption - Ulf_Moeller@public.uni-hamburg.de (Ulf Moeller)
  • 1996-01-24 (Thu, 25 Jan 1996 07:25:17 +0800) - Re: Crippled Notes export encryption - David Mazieres <dm@amsterdam.lcs.mit.edu>
    • 1996-01-25 (Thu, 25 Jan 1996 08:06:55 +0800) - Re: Crippled Notes export encryption - Derek Atkins <warlord@MIT.EDU>
      • 1996-01-27 (Sat, 27 Jan 1996 09:14:13 +0800) - Re: Crippled Notes export encryption - David Mazieres <dm@amsterdam.lcs.mit.edu>
        • 1996-01-25 (Thu, 25 Jan 1996 13:47:25 +0800) - Re: Crippled Notes export encryption - Derek Atkins <warlord@MIT.EDU>
          • 1996-01-25 (Fri, 26 Jan 1996 02:11:03 +0800) - Re: Crippled Notes export encryption - Mike Gurski <mgursk1@gl.umbc.edu>
    • 1996-01-25 (Thu, 25 Jan 1996 08:10:51 +0800) - Re: Crippled Notes export encryption - michael shiplett <walrus@ans.net>
    • 1996-01-25 (Thu, 25 Jan 1996 13:31:14 +0800) - Re: Crippled Notes export encryption - Jeff Weinstein <jsw@netscape.com>
    • 1996-01-25 (Fri, 26 Jan 1996 02:52:24 +0800) - Re: Crippled Notes export encryption - Jeff Weinstein <jsw@netscape.com>
    • 1996-01-26 (Sat, 27 Jan 1996 07:51:38 +0800) - Re: Crippled Notes export encryption - iagoldbe@calum.csclub.uwaterloo.ca (Ian Goldberg)
      • 1996-01-25 (Thu, 25 Jan 1996 12:43:27 +0800) - (JOKE) Re: Crippled Notes export encryption - Derek Atkins <warlord@MIT.EDU>
      • 1996-01-26 (Fri, 26 Jan 1996 21:39:01 +0800) - Re: Crippled Notes export encryption - Derek Atkins <warlord@MIT.EDU>