You are viewing a plain text version of this content. The canonical link for it is here.

Posted to legal-discuss@apache.org by Sherban Olario <sh...@ca.ibm.com> on 2011/09/12 20:28:03 UTC

Export classification details for Apache products.

Good afternoon,

I am enquiring about export classification details for Apache products.

Your web site http://www.apache.org/licenses/exports/ lists 
        Apache Geronimo Project 
                Apache Geronimo development 5D002 ASF 
                                1.0 and later 5D002 ASF 

        and 

        Apache Web Services Project 
                Apache WSS4J development 5D002 ASF, Bouncy Castle, Bouncy 
Castle, Apache Santuario 
                                1.0 and later 5D002 ASF, Bouncy Castle, 
Bouncy Castle, Apache Santuario 
                                Apache Rampart/Java development 5D002 ASF, 
Bouncy Castle, Bouncy Castle, Apache Santuario 
                                1.1 and later 5D002 ASF, Bouncy Castle, 
Bouncy Castle, Apache Santuario 
                                Apache Rampart/C development 5D002 ASF, 
The OpenSSL Project 
                                0.09 and later 5D002 ASF, The OpenSSL 
Project 
                                Apache Synapse 1.0, 1.1, 1.1.1, 1.2, 2.0.0 
5D002 ASF, Bouncy Castle, Bouncy Castle, Bouncy Castle, Bouncy Castle, 
Apache                          Santuario 

but it does not specifically mention these sub-parts:

        a)      Apache Geronimo CommonJ Spec 1.1
        b)      Apache Geronimo JMS Spec 1.1
        c)      Apache Web Services Security 1.5
 

Please confirm the classifications as 5D002, TSU for  a)-b)-c) above.

Appreciated,

===========================================
Sherban Olario
Project Manager, Legal Deliverables,
IBM Business Analytics

IBM CONFIDENTIAL INFORMATION: The contents of this email are confidential 
and for internal use only.  Do not distribute outside of IBM.

Re: Export classification details for Apache products.

Posted by Kevan Miller <ke...@gmail.com>.

On Sep 12, 2011, at 2:28 PM, Sherban Olario wrote:

> Good afternoon, 
> 
> I am enquiring about export classification details for Apache products. 
> 
> Your web site http://www.apache.org/licenses/exports/ lists 
>         Apache Geronimo Project 
>                 Apache Geronimo development 5D002 ASF 
>                                 1.0 and later 5D002 ASF 
> 
>         and 
> 
>         Apache Web Services Project 
>                 Apache WSS4J development 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario 
>                                 1.0 and later 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario 
>                                 Apache Rampart/Java development 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario 
>                                 1.1 and later 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario 
>                                 Apache Rampart/C development 5D002 ASF, The OpenSSL Project 
>                                 0.09 and later 5D002 ASF, The OpenSSL Project 
>                                 Apache Synapse 1.0, 1.1, 1.1.1, 1.2, 2.0.0 5D002 ASF, Bouncy Castle, Bouncy Castle, Bouncy Castle, Bouncy Castle, Apache                                 Santuario 
> 
> but it does not specifically mention these sub-parts: 
> 
>         a)        Apache Geronimo CommonJ Spec 1.1 
>         b)        Apache Geronimo JMS Spec 1.1 

Agreed with Robert that you should be checking with the individual projects. In terms of these two Geronimo Spec jars -- they are not included in the export list for the Geronimo project. IMO, this is correct.

--kevan
---------------------------------------------------------------------
To unsubscribe, e-mail: legal-discuss-unsubscribe@apache.org
For additional commands, e-mail: legal-discuss-help@apache.org

Re: Export classification details for Apache products.

Posted by Robert Burrell Donkin <rd...@apache.org>.

On 09/12/11 19:28, Sherban Olario wrote:
> Good afternoon,

Hi Sherba

> I am enquiring about export classification details for Apache products.
>
> Your web site http://www.apache.org/licenses/exports/lists
> *Apache Geronimo Project *
> Apache Geronimo development 5D002 ASF
> 1.0 and later 5D002 ASF
>
> and
>
> *Apache Web Services Project *
> Apache WSS4J development 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache
> Santuario
> 1.0 and later 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario
> Apache Rampart/Java development 5D002 ASF, Bouncy Castle, Bouncy Castle,
> Apache Santuario
> 1.1 and later 5D002 ASF, Bouncy Castle, Bouncy Castle, Apache Santuario
> Apache Rampart/C development 5D002 ASF, The OpenSSL Project
> 0.09 and later 5D002 ASF, The OpenSSL Project
> Apache Synapse 1.0, 1.1, 1.1.1, 1.2, 2.0.0 5D002 ASF, Bouncy Castle,
> Bouncy Castle, Bouncy Castle, Bouncy Castle, Apache Santuario
>
> but it does not specifically mention these sub-parts:
>
> *a) Apache Geronimo CommonJ Spec 1.1*
> *b) Apache Geronimo JMS Spec 1.1*
> *c) Apache Web Services Security 1.5*
>
>
> Please confirm the classifications as 5D002, TSU for a)-b)-c) above.

These lists are maintained by the projects responsible for these 
products. If you need clarification about whether these products contain 
strong cryptography covered by 5D002 you'll get a better and quicker 
answer by raising this on the development lists for these projects[1].

Cheers

Robert
[1]
  http://mail-archives.apache.org/mod_mbox/geronimo-dev/
  http://mail-archives.apache.org/mod_mbox/ws-dev/

---------------------------------------------------------------------
To unsubscribe, e-mail: legal-discuss-unsubscribe@apache.org
For additional commands, e-mail: legal-discuss-help@apache.org