Re: JCE API

Marianne Mueller (mrm@Eng)
Mon, 28 Jul 1997 10:31:09 -0700

Date: Mon, 28 Jul 1997 10:31:09 -0700
Message-Id: <199707281731.KAA10964@puffin.eng.sun.com>
From: Marianne Mueller <mrm@Eng>
To: jma@modultek.fi
Subject: Re: JCE API

The JCE from Sun Microsystems Inc. will never be available to non-US
citizens. This is not something that we control, but it is regulated
by the US government, which prohibits exports of cryptographic APIs.

It's the fact that the JCE contains cyptographic *APIs* that make it
unexportable. It does not matter what strength encryption is used to
implement the APIs; cryptographic APIs are today simply not
exportable.

We are publishing the API specification on the web site, but we may
not offer technical assistance to anyone overseas who may want to
provide an implementation to these APIs, again due to government
regulations. The spec only (no implementation) is at
http://java.sun.com/security/JCE1.1/earlyaccess/index.html

For more information on US export controls, see these web sites

U.S. Dept of Commerce www.doc.gov
Export Policy Resource Page www.crypto.com
Computer Systems Public Policy www.cspp.org