[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    found it.. was Re: What are the export restrictions these days,
From:       Mike I <mikei () WAVESYS ! COM>
Date:       2002-04-30 15:44:46
[Download RAW message or body]


ok, I found the 'official' word (by help of another post)

go here: http://msdn.microsoft.com/library/default.asp?url=/library/en-
us/security/Security/getting_the_csp_signed.asp


or just read this:

A CSP must be digitally signed by Microsoft to be used with the released
versions of Windows  operating systems.. The digital signature separates
applicable legal export controls on the CSP from the host operating system
and applications, thereby allowing broader distribution of encryption-
enabled products than would be possible under other circumstances.
Generally, U.S. export law limits the export outside the U.S. or Canada of
products that host strong encryption or an open cryptographic interface.
The digital signature requirement effectively prevents arbitrary use of
CryptoAPI, and allows export of the host operating system and CryptoAPI-
enabled applications. By removing encryption services from host systems
and applications, CryptoAPI places the burden of U.S. encryption export
restrictions squarely on the CSP vendor, who is subject to those controls
regardless.

----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM



[prev in list] [next in list] [prev in thread] [next in thread]