> http://www.dot.gov.in/isp/guide_international_gateway.htm >
As the title suggests "Guidelines and General Information for Setting Up of International Gateways for Internet", they are merely guidelines. Even if it is enforced, it has to be done in some legal format where the words like "individual" or "group" or "organization" are defined. Besides, restricting RSA does not mean they was to ban SSH, it is of least concern. They are used in SSL which will have a serious impact when it comes to banking. Also, there is *no* 40-bit RSA (usually 512/1028/2048/4096 bits). Using 40-bit RSA key, is like multiplication using 13 or 14 digit numbers, which is ridiculous, you might as well use plain text for that matter. They probably meant 40-bit DES ie., a shared secret encryption. In which case, like 3 DES, you can use four 40-bit keys to achieve a reasonably safe 160-bit encryption, so I am not quite sure what they are trying to achieve. And, the concept of outlawing encryption by the government (entirely) is an age old tactic which is hard to enforce. http://en.wikipedia.org/wiki/Cryptography#Legal_issues -- 0 _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc