|
|
|
|
|
|
by dingaling
2861 days ago
|
|
|
Of course e-commerce will be fine, because browser vendors will obtain licenses to ship TLS modules and as a condition of such will include the .gov root cert. It's trivial when you can pass arbitrary legislation. Back in the 90s we had to deal with US gov restrictions on encryption export. Software companies and organisations fell into line. It was a big deal when 128-bit keyed Netscape became available globally in 1997, per State Dept approval, but even then the full-strength server-side SSL was still restricted to 'approved' entities. And even 56-bit server SSL was only exportable with us.gov key escrow. I used to use Apache with the 40-bit SSL option. Pathetic strength but no-one was going to risk jail-time by breaking laws. |
|
|
I did at that time, it was just another law to ignore.