-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Actually, this is *not* about crypto at all, it is about "exploitations" tools, pen testing, vulnerability exposure, etc. See also: https://threatpost.com/security-researchers-sound-off-on-proposed-us-was senaar-rules/113023 And as a matter of fact: "Today the Department of Commerce’s Bureau of Industry and Security published a public meeting notice in the Federal Register (80 FR 40997-40998) for the Information Systems Technology Advisory Committee. The partially closed meeting will be held on July 29th and 30th, 2015 in Washington, DC. The open portion of the meeting will include an industry presentation on 'Penetration Testing and Implementation of Wassenaar 2013 Cyber-Related Provisions' on Wednesday. " http://www.gpo.gov/fdsys/pkg/FR-2015-07-14/html/2015-17235.htm There has been a mailing list set up to discuss the BIS's (Dept. of Commerce's Bureau of Industry and Security) proposed export restrictions (similar to crypto under the ITAR dual-use export restrictions) on said tools and mechanics: https://lists.alchemistowl.org/mailman/listinfo/regs The discussion archives are public. FYI, - - ferg On 7/14/2015 9:31 PM, manning wrote:
if you use crypto (antivirus, mmap, etc.) or encrypt your data, use VPNs, etc… you might want to read and comment. Comment period closes next week.
https://www.federalregister.gov/articles/2015/05/20/2015-11642/wassena ar-arrangement-2013-plenary-agreements-implementation-intrusion-and-surv eillance-items
manning bmanning@karoshi.com PO Box 12317 Marina del Rey, CA 90295 310.322.8102
- -- Paul Ferguson PGP Public Key ID: 0x54DC85B2 Key fingerprint: 19EC 2945 FEE8 D6C8 58A1 CE53 2896 AC75 54DC 85B2 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iF4EAREIAAYFAlWl6DgACgkQKJasdVTchbLF4gEAxwujdkfPBfB52TS/AyJLXvIo 0PpDWxUEg1G1ewWk11YA/2Shb3Ao5SaOabg440ZTPTr+J3BEvA41g9h4HQCggTYG =9Uz4 -----END PGP SIGNATURE-----