[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

posting of authentication code



-----BEGIN PGP SIGNED MESSAGE-----

I just heard from my NSA Export Office contact that if we want to post 
source code for processing SPKI certificates (signing and verifying) and if 
we leave out the actual crypto code (e.g., RSA source), we don't need to 
bother them with sending such code in to get approved for export.  As long 
as the code is for authentication purposes, we're free to do what we want.  
I've heard this now from two different export office people, so I feel very 
confident in this message.

 - Carl

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBM2S21VQXJENzYr45AQFn8AP/SODAg9bXkQJyew3H/2nbtTmGnQoxW7I8
3xqhtRAkrYxRH8vahO5FY/SB2pCj4nVcN0RBPFy7UlsOAM+Hn9sPubBj4Zupx9LR
KozdgH3NXeoCQ8nVAG1aVFPrKnqow4c61NxB85Zdj1B3ZrBvvvspsUN3bfenE8LP
xK1RffQzszY=
=LiGj
-----END PGP SIGNATURE-----


+------------------------------------------------------------------+
|Carl M. Ellison  cme@cybercash.com   http://www.clark.net/pub/cme |
|CyberCash, Inc.                      http://www.cybercash.com/    |
|207 Grindall Street   PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
|Baltimore MD 21230-4103  T:(410) 727-4288  F:(410)727-4293        |
+------------------------------------------------------------------+