[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MIT implementation sources?

At 8:13 PM -0700 2/21/99, Dean Povey wrote:
>>At 6:13 PM -0700 2/16/99, Paul Crowley wrote:
>>>Does anyone know of an FTP site outside the USA that carries the SDSI
>>>2.0 sources, and whether I'd be breaking any laws in fetching them
>>>from there if so?  I'd also be particularly interested in hearing
>>>about any complete examples of SPKI-enabled clients and servers that
>>>use this code, particularly if they're also SSL based.  I'm interested
>>>in using SPKI as the basic permissions system for the next major
>>>revision of PRCS (http://www.xcf.berkeley.edu/~jmacd/prcs) which is
>>>client-server and SSL based.
>>My reading of the latest Wasenaar (sp?) agreement is that authentication
>>only systems are completely de-controlled.  As such, unless you are in one
>>of the 5 really bad guy countries, export/import is completely legal.
>Hmm, are you sure that Wassenaar allows export of sources?  If memory serves
>correctly, only binary code is granted export if it meets the criteria.

I've been working on the theory that source, being more like speech than
object code, is certainly exportable if object code is.  I didn't see
anything in the Wassenaar agreement about source vs. object, but I could
have missed it.

Bill Frantz       | Macintosh: Didn't do every-| Periwinkle -- Consulting
(408)356-8506     | thing right, but did know  | 16345 Englewood Ave.
frantz@netcom.com | the century would end.     | Los Gatos, CA 95032, USA