Ireland's encryption policy

[Conrad Hughes]

A bit more info, this from a barrister on the Electronic Frontier
Ireland mailing list - I've asked him where the original is published:

----8<---- extract begins ----8<----

1. Cryptography Policy

Cryptographic techniques are used for the purposes of ensuring
confidentiality of electronic communication.

Ireland's policy on the use of encryption technologies is based on the
recognition that an effective policy should achieve a balance between
the rights of the individual in regard to privacy, the need to provide
for security and integrity of communications, the development of the
cryptography industry in Ireland, and the requirement for lawful access
to data for the purposes of law enforcement and national security. The
policy comprises the following basic principles:

*  Users shall have the right to access strong and secure encryption to
   ensure the confidentiality, security and reliability of stored data
   and electronic communication

*  Users shall have the right to choose any cryptographic method

*  The production, import and use of encryption technologies in Ireland
   shall not be subject to any regulatory controls other than
   obligations relating to lawful access

*  The export of cryptographic products is to continue to be regulated
   in accordance with the relevant EU Regulations and Decisions and
   Irish national legislation which reflect the Wassenaar Arrangement on
   Export Controls for Dual-Use Goods and Technologies and Conventional
   Arms

*  In order to enable lawful access to encrypted data, legislation will
   be enacted to oblige users of encryption products to release, in
   response to a lawful authorisation, either plaintext which verifiably
   relates to the encrypted data in question or the keys or algorithms
   necessary to retrieve the plaintext. Appropriate sanctions will be
   put in place in respect of failure to comply.

---->8---- extract ends ---->8----