[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Things we should be working on...
In article <[email protected]>,
Adam Back <[email protected]> wrote:
>Tim May <[email protected]> writes:
>> One more question. Could you tell us which things you are talking about
>> here, which things you returned to Canada to implement?
>I can't see that export controls are much of a big deal for freeware
>cypherpunk software ... just publish it on a US site with whatever
>access controls you fancy. It'll make it's way out of the country in
>a few minutes and end up on replay.com, or one of the automated
>mirrors of export control sites at ftp://idea.sec.dsi.unimi.it/pub/ or
>It's not as if you're trying to sell it, or are a corporation worrying
>about stepping on toes at NSA Inc.
>> If you are actually going to Canada to release products, this might be even
>> more interesting than either the Junger or Bernstein cases. Of course, if
>> you discuss this openly, you may be inviting repercussions.
>Just release it in the US. Lets someone else do the export.
I'm not primarily talking about _products_, here; I'm not selling stuff.
I'm just trying to publish! Part of my research (which focuses on computer
security) involves (surprise) building secure systems or breaking insecure
ones. Where this involves cryptography or cryptanalysis, I am prohibited
from publishing these systems on the Net, from my homepage (and I don't
_want_ to put access control on my homepage).
To answer Tim: for example, when I was in Canada last, I wrote Top Gun ssh
(secure shell for the Pilot) from the ground up. It would be hard to
understand how this could be a violation of US export regs, when nothing
involved ever _entered_, let alone was _exported_ from, the US.
I do understand that US citizens and Permanent Residents are prohibited
from giving crypto to foreigners even when they are outside of the US,
but I'm neither of those. The BXA _could_ try the old "let's tax all
foreigners living abroad" tactic, of course...