> Under the circumstances, the European finance and e-business industries
> would have to be crazy to use U.S. crypto-based products. And they're
> not crazy.
Would be great if the whole of the European finance industry
recognized that. ;-) However, this mostly applies to the current
situation with products like the backdoored Notes sold to the Swedish
(IIRC) government. With open source products, the issue is different
because they can be reviewed.
Experts like Bruce Schneier have always considered reviewability a
necessary condition for choosing a really secure product, see any of
the FAQs in sci.crypt. (Corollary, applying to all the Linux crypto
efforts: the code must be as simple and well-structured as possible.)
> To play in this business in the rest of the world, the U.S. will have to
> have a clear, consistent, and favorable policy, and U.S. companies will
> have to present products that are demonstrably strong with no trap doors.
> (I invite you to speculate if this will happen before Hell frezes over.)
This is the real concern for the U.S. software industry: the rest of
the world has simply lost trust in them and re-gaining it will be
difficult. No wonder that Netscape is rushing to open-source their
crypto products.
Olaf
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue Feb 15 2000 - 21:00:14 EST