From: Jeremiah A Blatz <jer+@andrew.cmu.edu>
Date: Thu, 13 Feb 1997 19:35:46 -0800 (PST)
To: anand@querisoft.com
Subject: Re: crypto restrictions
In-Reply-To: <330466AB.3D19@querisoft.com>
Message-ID: <0n0xnB200YUh03LyA0@andrew.cmu.edu>
MIME-Version: 1.0
Content-Type: text/plain


-----BEGIN PGP SIGNED MESSAGE-----

anand abhyankar <anand@querisoft.com> writes:
> i am a bit confused. what exactly are the us govt crypto regulations.

Hard to tell, really...

> what i mean is that :

Oh, this is one of those easy questions!

> 1) is it illegal to develop an encryption tool (s/w) in the US which
> uses > 40 bit size session keys and then export that s/w outside of the
> US.

Yes.

> 2) is it illegal to encrypt some data inside the us with a key > 40 bit
> in size and then send that data outside the US.

No.

HTH,
Jer

"standing on top of the world/ never knew how you never could/ never knew
 why you never could live/ innocent life that everyone did" -Wormhole

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQB1AwUBMwPcx8kz/YzIV3P5AQHqgwMAgCzNC8JCGJ4hY98Xk5UB4UtSRtx4VBfv
bCD1AeE/1qLLJThi187hCEQRxzm4gAC+jCG6B+WSghvplrnkkfdMRn+3d8/+3F/y
X/o7Khg9WqZcfm2uzOt9RSkaLXvl6Pk4
=WVv3
-----END PGP SIGNATURE-----