ITAR Survey - crypto export, early 1994
Article 3786 of talk.politics.crypto:
Path: grapevine.lcs.mit.edu!PIRANHA.LCS.MIT.EDU!douzzer
From: douzzer@PIRANHA.LCS.MIT.EDU (Daniel G. Pouzzner)
Newsgroups: talk.politics.crypto,sci.crypt,misc.legal.computing,alt.cyberpunk.tech
Subject: final results of ITAR survey
Followup-To: talk.politics.crypto
Date: 16 Mar 1994 03:57:16 GMT
Organization: gaia
Lines: 124
Message-ID: <2m602s$gnk@GRAPEVINE.LCS.MIT.EDU>
Reply-To: douzzer@athena.mit.edu
NNTP-Posting-Host: piranha.lcs.mit.edu
Xref: grapevine.lcs.mit.edu talk.politics.crypto:3786 sci.crypt:20824 misc.legal.computing:7554 alt.cyberpunk.tech:4308
_Digest of Responses to Cryptosystem Survey_
Date of this report: 15 March 1994
Compiled by: douzzer@athena.mit.edu (Daniel Pouzzner)
keys to table:
CO - country
RSA - have RSA source?
DES - have DES source?
TDES - have triple-DES source?
X1 - have made software available to others?
X2 - currently make available to others?
X3 - be willing to make it available to own country?
X4 - willing to make available to world?
X5 - have means to make it available?
XL1 - legal to import crypto software?
XL2 - legal to use?
XL3 - legal to export?
A1 - capable of writing RSA implementation?
A2 - capable of creating a new assymetric algorithm?
A3 - capable of creating a new symmetric algorithm?
acc - willing to let name be cited in followup reports and such?
signed - well, was it PGP-signed?
y - unambiguous yes
n - unambiguous no
? - unambiguous "don't know"
y? - qualified yes
n? - qualified no
* - capable of implementing but not of confidently devising an algorithm
CO RSA DES TDES X1 X2 X3 X4 X5 XL1 XL2 XL3 A1 A2 A3 acc(#) signed
nz y y y y y y y y n? n? n? y n n y(2) n
nz n y n y n y y y n? n? n? y n n y(3) n
ch y y n y y y y y n n ? y n n y(4) n
uk y y n y y y y y n? n? n? y n n y(5) n
ie y n n y y y y y n n n y y y y(6) n
fi y y n y y y y y n n ? y * * y(7) n
at y y n y y y y y n? n? n? y * * y(8) n
de y y n n n y y n n n y n n n y(9) n
uk y y y y y? y y y? n? n? n? y y? y y(10) n
fi y y y y y y y y n n n y? ? ? y(11) n
CO RSA DES TDES X1 X2 X3 X4 X5 XL1 XL2 XL3 A1 A2 A3 acc(#) signed
nl y y y ? ? y y ? n n n ? ? ? y(12) y
uk y y n y n y y y n n ? n n y y(13) n
br n y n y y y y y n? n? n? y ? ? n(14) y
uk y y y n n n n n ? y? y? y y y y(15) n
uk n y y n n y y y n? n? n? y? n * y(16) y
fi y n n y y y y y n n n n n n n(17) n [1]
uk n y y y y y y y y? n n? y y y y(18) n [1]
nl y y n y y y y y? n? n? n? y y y y(19) y
de y n n y y y y n ? ? ? y y n y(20) y
de y n n y y y y y n? n? n? n n n n(21) n
CO RSA DES TDES X1 X2 X3 X4 X5 XL1 XL2 XL3 A1 A2 A3 acc(#) signed
us n n n n n y y y? n n y y? ? ? n(22) n
nl y y n? y y y y y n n n ? n n y(23) y
de y n n y y y y y n? n n? y n n y(25) n
de y y n y y y y y n n n y ? y y(26) y
fr y y y y y y y n y y? ? n n n y(27) y
de y y n y y y y y? n n n ? n n n(28) y
de y n n n n y y y n? n? n? y? * * y(29) n
de n n n n n y y y n n n n n n y(30) n
br y y y y y y y ? n n n y ? ? y(32) y
uk y y y y y y y y? n n? n? y * y y(33) y
CO RSA DES TDES X1 X2 X3 X4 X5 XL1 XL2 XL3 A1 A2 A3 acc(#) signed
lv y n n n n y y y n n n y? ? ? y(34) n
de y y y y y y y y n n n y y y y(35) n
uk y y n y y y n y n? n? y? y n n y(36) y
au n y y y y y y y ? ? ? y * * y(37) n
au y y y ? ? ? ? ? n n n y n y n(38) n
ch y y n y y y y y n ? n y * y y(39) y
ch y y n y y y y y n n n y? n * y(40) y
nl y y n y y y y y n n n ? ? ? n(41) n
us n n n n n y y y n n ? n n n n(42) n
[1] responses on XL1 through XL3 were reported after consultation with an
authoritative government source
_Original survey, for reference:_
----------------------------------------------------------------------
__Survey of International Cryptosystem Availability__
1) where are you from? (simply the name of your country)
2) do you presently have software in source code form that, when
compiled, performs RSA encryption and decryption with prime moduli
longer than 600 bits?
3a-b) a) do you have software in source code form that, when compiled,
performs DES encryption and decryption? b) have you made the
obvious extensions to perform "triple-DES" encryption and
decryption?
4a-e) a) have you made, b) do you make, and/or c) would you be willing
to make this cryptographic software available to others in your own
country? d) to others worldwide? e) do you have the requisite
resources to do this, i.e. a network connection or a BBS with at
least one dedicated phone line?
5a-c) do the laws of your nation restrict the a) import, b) use, or c)
export of cryptographic software?
6a-c) is your understanding of the mathematics of cryptography
sufficient to allow you to create a) your own implementation of
RSA, b) other robust public key cryptosystems, and/or c) other
robust symmetric key cryptosystems?
7) do you give the survey taker permission to cite your name and email
address in documents that are made generally available?
----------------------------------------------------------------------
--
-daniel (douzzer@athena.mit.edu) i've been here and i've been there and
key 0B 99 0D 4F E8 55 9A 95 i've been inbetween. i talk to the wind,
print 43 C1 7F B5 DF 8F E3 33 my words are all carried away.
key: finger douzzer@ai.mit.edu the wind cannot hear.