我的应用程序使用iOS钥匙串来存储密码,仅此而已。当在iTunes Connect上回答“出口合规性 - 加密”方面的2个问题时,我该怎么做呢?
- 您的应用程序是否设计用于使用加密技术或包含/集成加密技术?(即使您的应用程序仅利用iOS或OS X中提供的加密技术,也请选择“是”)是 / 否
- 您的应用程序是否符合《美国出口管理条例》第5类第2部分提供的任何豁免? 是 / 否
我的应用程序使用iOS钥匙串来存储密码,仅此而已。当在iTunes Connect上回答“出口合规性 - 加密”方面的2个问题时,我该怎么做呢?
截至2015年中期,相关内容如下:
https://www.bis.doc.gov/index.php/policy-guidance/encryption/identifying-encryption-items
这里描述的是加密出口事宜。其中一个重要内容是“注4”。
https://www.bis.doc.gov/index.php/policy-guidance/encryption/identifying-encryption-items#Three
Note 4: Category 5, Part 2 does not apply to items incorporating or using "cryptography" and meeting all of the following:
(a) The primary function or set of functions is not any of the following:
(1) "Information security";
(2) A computer, including operating systems, parts and components therefor;
(3) Sending, receiving or storing information (except in support of entertainment, mass commercial broadcasts, digital rights
management or medical records management); or
(4) Networking (includes operation, administration, management and provisioning);
(b) The cryptographic functionality is limited to supporting their primary function or set of functions; and
(c) When necessary, details of the items are accessible and will be provided, upon request, to the appropriate authority in the exporter’s
country in order to ascertain compliance with conditions described in paragraphs (a) and (b) above.
http://www.bis.doc.gov/index.php/policy-guidance/encryption/encryption-faqs
该链接提供了有关加密政策和常见问题解答的信息。Examples of items that are excluded from Category 5, Part 2 by Note 4 include, but are not limited to, the following:
Consumer applications. Some examples:
piracy and theft prevention for software or music;
music, movies, tunes/music, digital photos – players, recorders and organizers
games/gaming – devices, runtime software, HDMI and other component interfaces, development tools
LCD TV, Blu-ray / DVD, video on demand (VoD), cinema, digital video recorders (DVRs) / personal video recorders (PVRs) – devices, on-line media guides, commercial content integrity and protection, HDMI and other component interfaces (not videoconferencing);
printers, copiers, scanners, digital cameras, Internet cameras – including parts and sub-assemblies
household utilities and appliances
简而言之,如果你的应用程序主要功能不是加密,而你仅仅使用加密传输游戏信息或者登录,那么你的应用程序不会受到出口法律的限制。
但我不是律师,如果你真的很担心,建议咨询一位律师。苹果公司放弃检查这一点的责任。如果你错误地回答“否”,那么这将成为你的问题,而不是他们的问题。