我注冊用戶時 notes id的安全類型分北美和國際, 它們有什麼分別??
我記得在舊公司時,不可以選 北美, 否則新注冊的id是有問題的.
但我當時無深究是什麼問題.


下面是我在admin help找到的:
安全類型 選擇「北美」或「國際」。安全類型在傳送及接收郵件及加密資料時，會決定建立的 ID 檔類型，並會影響加密。「北美」是兩者中較強勢的類型。

虽然偶没注意过这个问题...

不过同问.... :lol

对于好象是在R5.03还是哪个版本以前的版本，需要根据自己所处的地域不同，选择不同的类型，北美只能在美国和加拿大使用，其它地方都只有选择国际范围，两者的加密长度不一样的。

不过，在此以后的版本已经没有这种限制了。

如果我在同一個server,一部份人選北美,另一部份人選國際.
會不會有問題~
或者選那種會比較好.

[ 本帖最后由 scholes 于 2006-12-18 02:34 PM 编辑 ]

我觉得选国际好些吧 ^__^ 大些....

呵呵，这个北美和国际，一方面是加密的安全性。另一方面好像是关于软件本身的一个法律条款的问题。北美的话，notes的出口销售许可证按照该地区的法律条款，选择国际就是除了北美区域的多按照这个条款来处理。就象其他的软件在不同的国家或地区销售采取的方式不一样类似。

好象是从R5.03版本开始，以后的版本都不存在北美和国际两种类型的选择了，也就是说，可以选择任何一种类型都可以了。

感覺xiaodiyang 說的有道理，並且北美的加密等級比較高，如果說國際的是128位，那北美的可能就是256位。

北美和国际的安全级别不是一样的。北美的安全级别要比国际的要高。北美的级别出口是受限制的。对于一般的公司可以说没有区别。但是如果贵公司是一个跨国公司，在国外也有员工，那么为了避免不必要的麻烦，建议您在构建domino之间。一律设置为国际。否则很麻烦。

由于美国对于加密算法的出口有限制，一些高强度的加密算法(超过512位的RSA算法)不能出口，为了解决这个问题，Lotus设置了北美和国际两种加密算法，最主要是加密强度不同，在以前北美的加密强度较高，国际的加密强度符合美国的加密出口限制。

不过后来美国放宽了加密出口限制，因此正如以上几位所说，现在已经没有这个限制，Lotus保留这两项是为了做到向上兼容。

关于这两项内容的不同，我在R7的管理员帮助文档中有看到，下面是原文，有兴趣的可以参考一下：

All Notes IDs contain two public/private key pairs. Prior to 5.0.4, key lengths were restricted for the purposes of encrypting data, but not for authentication or signing. Anything over 512-bit RSA key and 56-bit symmetric key was considered strong encryption and was not allowed for export by the U.S. Government. Customers were required to order and choose among kits of different cryptographic strengths.

With the relaxation of US government regulations on the export of cryptography, the Domino server and the Domino Administrator, Domino Designer, and Lotus Notes client products have consolidated all previous encryption strengths -- North American, International, and France -- into one strong encryption level resulting in a single "Global" release of the products. The Global release adopts the encryption characteristics previously known as North American. Strong encryption in Global products can be used worldwide, except in countries whose import laws prohibit it, or except in those countries to which the export of goods and services is prohibited by the U.S. government. Customers are no longer required to order Notes software according to cryptographic strength.

When you upgrade to a Global release of Domino and Notes, stronger cryptography will be used without a requirement to reissue existing IDs. These changes are seamless to users as well as administrators. When two different versions of software are communicating, the encryption negotiation will result in a step-down to the weaker level. Therefore, the full benefits of stronger encryption will only be realized when all software has been upgraded to the Global (release 5.0.4 and later) level. However, any mixed versions of the software will interoperate.

The "Register New User" dialog box still offers a choice between North American and International IDs. It was left this way because administrators often use the North American or International distinction for administration purposes, or there may be older versions of the software still in use in some companies. In addition, countries have their own import rules. Preserving this distinction will allow Lotus to respond to specific country changes, if required.

Note These regulations pertain only to export from the United States. For other countries with import regulations, customers need to check the requirements of the specific country. While Lotus takes all steps to acquiesce with governmental encryption regulations worldwide, Lotus recommends that customers familiarize themselves with local encryption regulations to remain in compliance.

Interoperability issues

Support for ID types. Both North American and International ID types continue to be supported for the Global release. This is for backward compatibility with pre-5.0.4 clients. Lotus Notes users can keep their existing International IDs if the Global version of the software is installed. The Global version will automatically allow the use of stronger encryption. Browser users can keep their existing key ring, but users must follow the manufacturer's recommendations for upgrading the browser to stronger encryption.
Interoperability with post-5.0.4 releases. If your organization's clients and servers are all running release 5.0.4 or later, it makes no difference whether you create North American or International IDs. Both types of ID will work the same way.
Interoperability with pre-5.0.4 releases. Lotus Notes users, as well as Domino servers which have been upgraded to release 5.0.4 and later, can authenticate and continue day-to-day operations securely with clients and servers running on earlier releases of software. However, if your organization has clients or servers running releases earlier than Notes and Domino 5.0.4, you should continue to create the same types of IDs you created with the earlier versions. International versions of releases prior to 5.0.4 do not allow users to switch to North American IDs, so when registering new international users, you shouldn't create only North American IDs. Similarly, North American versions of earlier releases use weaker cryptography when running with International IDs, so you shouldn't create only International IDs.

The best strategy for deciding between North American and International IDs is to continue using the decision process that was in place for earlier releases of Notes and Domino. Eventually, as you upgrade the Notes clients and Domino servers, the decision will not matter.

原帖由 长颈叔叔 于 2006-12-31 01:00 AM 发表
由于美国对于加密算法的出口有限制，一些高强度的加密算法(超过512位的RSA算法)不能出口，为了解决这个问题，Lotus设置了北美和国际两种加密算法，最主要是加密强度不同，在以前北美的加密强度较高，国际的加密 ...
！翻译软件偶给大家推荐 林格斯--翻译软件 ！