Date: Wed, 8 Jul 1998 18:13:51 -0700 (PDT)
From: Jan Luehe <Jan.Luehe@Eng>
Subject: Re: JCE export question
To: java-security@java.Sun.COM, drsharp@concept5.com
Dan:
> I've been browsing your website, but haven't found a clear answer to
> exportability of JCE.
JCE 1.2 is not exportable outside the U.S./Canada.
> I'm building some CORBA Security applications in Java that use Crypto
> functions (at this point, only sign & verify).
>
> I know that JCE comes with a default package ("SUN Security Provider
> v1.0") that includes DSA signing and key generation, along with SHA-1
> and MD5 digests.
The "SUN" provider is part of JDK 1.2 (not JCE!) and is not subject to
any export restrictions, because it only provides implementations
for digital signature and message digest algorithms.
> My question(s):
> Is this package exportable? That is to say, is it a normal part of JDK
> 1.1, or does it have special export restrictions on it?
It's part of the core and not subject to any export restrictions.
> Also, does it provide signature verification?
Yes, it does.
Jan