Did you know, that if you make a software product in the United States of America, and it uses any form of encryption, even just HTTPS requests, and even if you're using the built-in libraries of an operating system, you have to submit an Export Administration Regulations Annual Self Report to both the BIS and the NSA? No, I didn't either.

And Apple points this out to everyone who submits apps to them from the US.

Conveniently, it involves sending a CSV form to two email addresses. Both email addresses are supplied as a slightly blurry image, I guess to prevent the addresses from being scraped. Hurray for macOS Monterey's built-in OCR.

I think Apple is the distributor? They say "if you upload your app to the apple store and distribute it outside the US". It's like they don't know nothing or nothing about nobody and you can't put your app on their devices without using their app store but they have no control but everyone has to pay them.

Anyhow that text on their site was probably written when jobs was alive.

Understanding US export controls with open source projects - Linux Foundation

[🖼 Image/photo]

One of the greatest strengths of open source development is how it enables collaboration across the entire world. However, because open source development is a global activity, it necessarily involves making available software across national boundaries. Some countries’ export control regulations, such as the United States, may require taking add...

@kode54 indeed, cryptography is still in some ways regulated like munitions. Being a cryptographer did not come with the arms merchant lifestyle, though...

Sign in to participate in the conversation
Treehouse Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!