>From: ishii @
>Date: Tue, 12 Mar 96 17:56:12 JST
>Subject: easing American export regulation ?
>Please let me know someone.
> It was soon heard that export of the 64bit version of RC2 ? of RSA
> was permitted by easing American export regulation a little.
I believe that what you have heard is that TIS (the makers of the Gauntlet
firewall) have succeeded in getting the first ever commercial DES product
(unweakened) out of the USA. For this they deserve *huge* applause and
thanks - let's just hope that this is a harbinger of things to come.
The primary use for this technology with the Gauntlet firewall is for point-
to-point Virtual Private Networks (VPNs) across the Internet.
The issue is very closely tied up with their new Commercial Key Escrow (CKE)
On the downside, there is this information:
- The DES they've got permission to export is single-DES only - 56bit.
- Single DES is not considered "strong" any more
- The keys for your DES encryption must be generated and escrowed
(stored) in the USA
- Each endpoint for your VPN must have a separate export license from the
- The keys are subject to US law, not the laws of the country where they're
being used - unless you also choose to store them elsewhere.
> Is it true? I am living in JAPAN .
I hope this helps. Considering my penultimate bullet above, I don't know
how hard you'll find it getting the license into Japan; shouldn't be too
Just as an aside, I use SSH between my laptop and my office when I'm
travelling; just use a gopher or a WWW search to look for SSH. And yes,
it was developed outside the US (I believe) :-)
-- __ _____ __
_________________________________ (__\/ \/__) ________________
Kevin Kealy ( \_|_/ )
Finger kevink @
uk for PGP key =| |/| |= Honda CBR1000FM
\ |\| /
_______________________________________ \_/ ______________________
PGP Key fingerprint: 30 F5 E6 3F B5 67 2D CB AD 36 B5 06 E9 BC 4E 5E