On 8/11/15, Eric Hill <Eric.Hill at jmp.com> wrote: > > We're getting some pushback from our lawyers suggesting that SQLite's use of > RC4 even just to generate random numbers is, in their minds, encryption for > export purposes.
No. The RC4 encryption algorithm consists of three subcomponents: (1) Key management logic (2) The pseudo-random number generator (PRNG) (3) The encoder/decoder SQLite only implements (2). It omits (1) and (3). And hence, the RC4 kernel inside of SQLite cannot be used for encryption. -- D. Richard Hipp drh at sqlite.org