[cryptography] Interesting Webcrypto question

coderman coderman at gmail.com
Sun Mar 3 06:28:24 EST 2013


On Sun, Mar 3, 2013 at 1:39 AM, Peter Gutmann <pgut001 at cs.auckland.ac.nz> wrote:
> Say you've implemented a bunch of crypto on your web page via Javascript.
>
> Someone in North Korea (or Iran, or one of the other export-restricted
> nations) visits your site.
>
> You've now exported crypto to a restricted country.  What happens next?


most important question: what jurisdiction for you and your web page?

perhaps you could argue you never exported, but merely cached
remotely. some server http response headers could advance such a
claim. ;)


practical risk seems to be no one cares at this level; they're
bypassing crypto if and when they need through easier avenues...



More information about the cryptography mailing list