[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Fwd: [comp.risks] Risks Digest 20.11

>From comp.risks. 
Note: Ellipsis "[...]" was done by me.
Also Note: I found only one reference to "encry" on the wassenaar.org
page. This points to the amendments which are not only yet.

As far as I know, there are no pending crypto regulations in the pipe
in Germany yet. 


------- Start of forwarded message -------
From: risko@csl.sri.com (RISKS List Owner)
Newsgroups: comp.risks
Subject: Risks Digest 20.11
Message-ID: <CMM.>
Date: 8 Dec 98 22:24:48 GMT
Organization: The Internet Gateway Service


Date: Fri, 4 Dec 1998 13:15:01 -0800
From: Seth David Schoen <schoen@uclink4.Berkeley.EDU>
Subject: Wassenaar Arrangement signed

According to a press release and Reuters reporting, the Wassenaar
Arrangement, a major treaty on export controls, has been signed by 33 member
states.  The most significant provision of the Arrangement from the point of
view of most computer users is a promise by signatories to adopt US-style
export controls on cryptography.

While the Arrangement does not dictate specific policies for its member
states, they are still expected to try to bring their export rules in line
with certain standards, which analysts said were dictated by the US and
intended to promote an anti-crypto agenda.

The member countries are Argentina, Australia, Austria, Belgium, Bulgaria,
Canada, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary,
Ireland, Italy, Japan, Republic of Korea, Luxembourg, The Netherlands, New
Zealand, Norway, Poland, Portugal, Romania, Russia, Slovakia, Spain, Sweden,
Switzerland, Turkey, Ukraine, United Kingdom, United States.

Some of these countries are presently the major sources for the international
distribution of cryptographic software.



Date: Fri, 4 Dec 1998 14:15:13 -0800
From: Seth David Schoen <schoen@uclink4.Berkeley.EDU>
Subject: "A very interesting development": export exemptions for free software

According to some international developers of crypto software, some
Wassenaar countries have exemptions in the works for free or Open Source
crypto software (with various definitions of what's allowed).  There are
also supposed to be exemptions for public domain software.

The Norwegian developer Eivind Eklund wrote on slashdot.org:

   I just got information on how Norway (where I live) implement this
   (ie, how the regulations are changed). The new rules prohibit export
   of crypto-software, but with a deliberate exception for open source
   software. This is a very interesting development.

Several other countries seem to be developing similar policies (including
Sweden and Canada); these rules could protect the development of free crypto
software on the Internet.

Seth David Schoen L&S '01 (undeclared) / schoen@uclink4.berkeley.edu


Date: Fri, 4 Dec 1998 21:39:06 est
From: Mike_Perry@DGE.ceo.dg.com
Subject: Re: the Internet has {no|perfect} memory (RISKS-20.09-10)

Before the last election here in the UK, the Labour party was against
controls on encryption, and promised, on their website, to oppose them.
Now that they are in power, they are planning to introduce a law 
controlling encryption - all the usual key escrow, TTP stuff.
And they've quietly removed the pages on their site which promised 
opposition to such legislation.
Old fashioned paper pamphlets are impossible to retract, but I 
personally find the ease with which the Internet facilitates this 
Orwellian rewriting of history a bit scary.
The RISK? - not simple disappearance, but the replacement of the real 
past with a false one.
Mike Perry <mike_perry@dge.ceo.dg.com>

------- End of forwarded message -------

Reply to: