Date: Fri, 23 May 1997 16:08:36 +0200
From: Peter Koellner <peter.koellner@FernUni-Hagen.de>
To: java-security@web2.javasoft.com
Subject: Encryption schemes for Export
I think, we will soon require support for integration of implementations
of hard encryption schemes from outside the US. We can't base our
commercial applications on a crippled security scheme, and we would
like to keep them compatible with US-American solutions. The fact
that the US restricts hard encryption software does not mean that there
are no such implementations available in Europe. So, what I would like
to have is a well-defined interface to hook on my own encryption
algorithms following the legal requirements of my own country.
There is a comparable example with PGP implementations: The US-Version
is legal within the USA, where the international distribution is used
anywhere else in the free world. This way, I have my 1024 Bit encryption
schemes for mail and digital signatures without the need of anyone
breeching US-Export regulations in any phase of the process, and both
versions are fully compatible to each other. As far as I know, there is
no patent pending on the required encryption algorithms in Europe.
In the last months, I already had severe difficulties with SSL
incompatibilities of Javasoft products like the Hotjava Browser and
the Java Server and I see much more such problems for vital
components of future projects, if there is no solution to this problem.
regards,
Peter
--=20
Peter K=F6llner <peter.koellner@fernuni-hagen.de> DoD
#1929