[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ITAR vs. Diffie-Hellman Key Exchange?




> However, is Diffie-Hellman exportable?   After all, it's not crypto,
> it's *just* key exchange, and people can plug in their own triple-DES
> from the usual sources.  It looks to me like it's probably legal,
> though if you were to then transmit the password by XORing with the login
> key or some such probably-unsafe behaviour it might not be.

I think the export restrictions refer to "secret messaging".  DH
creates a shared secret.  I doubt it can be exported.


brad