我的应用程序是否使用加密(仅限钥匙​​串)?

时间:2015-04-18 12:12:44

标签: ios itunesconnect keychain

在我的应用程序中,我使用iOS钥匙串来存储密码,就是这样。关于iTunes Connect上的“导出合规性 - 加密”这两个问题,我该怎么回答?

  1. 您的应用是否设计为使用加密技术或是否包含或 加入密码学? (即使您的应用仅限于,也请选择是 使用iOS或OS X中提供的加密。)是/否
  2. 您的应用是否有资格获得“美国出口管理条例”第2部分第5类规定的任何豁免? 是/否

1 个答案:

答案 0 :(得分:5)

截至2015年中的相关位:

https://www.bis.doc.gov/index.php/policy-guidance/encryption/identifying-encryption-items

这描述了加密导出内容。其中一个重要的事情是“注4”。

https://www.bis.doc.gov/index.php/policy-guidance/encryption/identifying-encryption-items#Three 

Note 4: Category 5, Part 2 does not apply to items incorporating or using "cryptography" and meeting all of the following:

(a) The primary function or set of functions is not any of the following:
     (1) "Information security";
     (2) A computer, including operating systems, parts and components therefor;
     (3) Sending, receiving or storing information (except in support of entertainment, mass commercial broadcasts, digital rights
          management or medical records management); or
     (4) Networking (includes operation, administration, management and provisioning);
(b) The cryptographic functionality is limited to supporting their primary function or set of functions; and
(c) When necessary, details of the items are accessible and will be provided, upon request, to the appropriate authority in the exporter’s
     country in order to ascertain compliance with conditions described in paragraphs (a) and (b) above.

但是就是这样:

http://www.bis.doc.gov/index.php/policy-guidance/encryption/encryption-faqs 

Examples of items that are excluded from Category 5, Part 2 by Note 4 include, but are not limited to, the following:   

    Consumer applications.  Some examples:
    piracy and theft prevention for software or music;
    music, movies, tunes/music, digital photos – players, recorders and organizers
    games/gaming – devices, runtime software, HDMI and other component interfaces, development tools
    LCD TV, Blu-ray / DVD, video on demand (VoD), cinema, digital video recorders (DVRs) / personal video recorders (PVRs) – devices, on-line media guides, commercial content integrity and protection, HDMI and other component interfaces (not videoconferencing);
    printers, copiers, scanners, digital cameras, Internet cameras – including parts and sub-assemblies
    household utilities and appliances

总而言之:如果您的应用程序的主要功能不是加密,并且您仅使用加密技术来传输游戏信息或仅用于登录,则您的应用程序将不受出口法律控制。

但我不是律师,如果你真的很担心,请咨询一下。 Apple不承担任何检查责任。如果你说“不”而你错了,那就是你的问题,而不是他们的问题。

相关问题
最新问题