August 1, 2019, is the deadline for submitting semi-annual reports for certain ENC Restricted encryption items exported or re-exported between January 1 and June 30, 2019, pursuant to paragraphs (b)(2) and (b)(3)(iii) of License Exception ENC (15 CFR 740.17). The encryption items subject to the semi-annual reporting requirement include:
- certain network infrastructure items
- certain encryption source code that is not publicly available
- items that have been specifically designed, modified, adapted or customized for "government end-users"
- commodities and software for quantum cryptography
- cryptanalytic items and items with an open cryptographic interface
- commodities and software that provide penetration capabilities that are capable of attacking, denying, disrupting or otherwise impairing the use of cyber infrastructure or networks
- items that perform advanced network vulnerability or digital forensics analysis
If you would like assistance determining whether the EAR's encryption controls or semi-annual reporting requirement apply to your products, please contact a member of our team.
[View source.]