Can anyone give me the facts on the current cryptography export laws for internal corporate use? That is, if my company wants to communicate safely with our own branch offices abroad via WANs, can we use 128 bit encryption for that communication? Or are we restricted to 40 bit once the communication leaves the US (virtual) border? Much obliged, CJ Prince BS+T