Software Export Compliance Fundamentals
Expert-defined terms from the Professional Certificate in Software Export Controls course at HealthCareStudies (An LSPM brand). Free to read, free to share, paired with a professional course.
Access Control List (ACL) refers to a list of rules used to filter traffi… #
Access Control List (ACL) refers to a list of rules used to filter traffic on a network, the concept is related to security measures, and it is used to control access to certain resources, the related terms are Firewall and proxy server, the ACL is used to allow or deny access to certain resources based on the source IP address, destination IP address, and port number, for example, an ACL can be used to block traffic from a specific IP address or to allow traffic only from a specific IP address.
Advanced Encryption Standard (AES) is a symmetric key block cipher… #
Advanced Encryption Standard (AES) is a symmetric key block cipher used to protect data at rest and in transit, the concept is related to cryptography and security, the related terms are encryption and decryption, AES is widely used to protect data in various applications, including software and hardware, for example, AES can be used to encrypt data stored on a hard drive or to encrypt data transmitted over a network.
Anti #
Circumvention refers to measures taken to prevent the circumvention of export controls, the concept is related to regulations and compliance, the related terms are encryption and decryption, anti-circumvention measures are used to prevent the unauthorized export of controlled technology, for example, anti-circumvention measures can be used to prevent the unauthorized export of encryption software.
Appeal refers to the process of challenging a decision made by a <… #
Appeal refers to the process of challenging a decision made by a regulatory agency, the concept is related to regulations and compliance, the related terms are petition and review, an appeal can be made to challenge a decision made by a regulatory agency, for example, an appeal can be made to challenge a decision made by the Bureau of Industry and Security (BIS) regarding the classification of a product.
Audit refers to the process of examining and evaluating an organiz… #
Audit refers to the process of examining and evaluating an organization's compliance with regulations, the concept is related to compliance and risk management, the related terms are review and assessment, an audit can be conducted to evaluate an organization's compliance with export controls, for example, an audit can be conducted to evaluate an organization's compliance with the Export Administration Regulations (EAR).
Authentication refers to the process of verifying the identity of… #
Authentication refers to the process of verifying the identity of a user or system, the concept is related to security and access control, the related terms are authorization and verification, authentication is used to ensure that only authorized users or systems have access to sensitive information, for example, authentication can be used to verify the identity of a user logging into a system.
Authorization refers to the process of granting access to a use… #
Authorization refers to the process of granting access to a user or system, the concept is related to security and access control, the related terms are authentication and permission, authorization is used to ensure that only authorized users or systems have access to sensitive information, for example, authorization can be used to grant access to a user to a specific resource.
Bureau of Industry and Security (BIS) refers to the agency responsible fo… #
Bureau of Industry and Security (BIS) refers to the agency responsible for administering and enforcing the Export Administration Regulations (EAR), the concept is related to regulations and compliance, the related terms are export controls and licensing, the BIS is responsible for classifying and controlling the export of dual-use items, for example, the BIS is responsible for classifying and controlling the export of encryption software.
Classification refers to the process of determining the export<… #
Classification refers to the process of determining the export control classification of a product, the concept is related to regulations and compliance, the related terms are EAR and ITAR, classification is used to determine the level of control required for the export of a product, for example, classification can be used to determine whether a product is subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Commodity Classification Automated Tracking System (CCATS) refers to the syst… #
Commodity Classification Automated Tracking System (CCATS) refers to the system used to classify and track commodities subject to export controls, the concept is related to regulations and compliance, the related terms are EAR and ITAR, the CCATS is used to classify and track commodities subject to the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR).
Compliance refers to the process of adhering to regulations and <b… #
Compliance refers to the process of adhering to regulations and standards, the concept is related to regulations and risk management, the related terms are audit and review, compliance is used to ensure that an organization is adhering to relevant regulations and standards, for example, compliance can be used to ensure that an organization is adhering to the Export Administration Regulations (EAR).
Controlled Technology refers to technology that is subject to e… #
Controlled Technology refers to technology that is subject to export controls, the concept is related to regulations and compliance, the related terms are EAR and ITAR, controlled technology includes technical data and software that is subject to export controls, for example, controlled technology can include encryption software and technical data related to defense articles.
Country of Origin refers to the country in which a product was … #
Country of Origin refers to the country in which a product was manufactured or produced, the concept is related to regulations and compliance, the related terms are country of destination and export controls, the country of origin is used to determine the applicable export controls, for example, the country of origin can be used to determine whether a product is subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Cryptographic refers to the practice of using cryptography to prot… #
Cryptographic refers to the practice of using cryptography to protect data, the concept is related to security and encryption, the related terms are encryption and decryption, cryptographic techniques are used to protect data from unauthorized access, for example, cryptographic techniques can be used to encrypt data transmitted over a network.
Customs refers to the agency responsible for administering and … #
Customs refers to the agency responsible for administering and enforcing customs regulations, the concept is related to regulations and compliance, the related terms are export controls and import regulations, customs is responsible for collecting duties and taxes on imports and exports, for example, customs can be responsible for collecting duties on imports of controlled technology.
Deemed Export refers to the transfer of technology or technical… #
Deemed Export refers to the transfer of technology or technical data to a foreign national within the United States, the concept is related to regulations and compliance, the related terms are export controls and visa requirements, a deemed export is considered an export for purposes of the Export Administration Regulations (EAR), for example, a deemed export can occur when a foreign national is granted access to controlled technology within the United States.
Defense Article refers to an item or service that is subject</i… #
Defense Article refers to an item or service that is subject to the International Traffic in Arms Regulations (ITAR), the concept is related to regulations and compliance, the related terms are ITAR and export controls, defense articles include items such as firearms and military equipment, for example, defense articles can include items such as tanks and missiles.
Dual #
Use refers to items or technology that have both civilian and military applications, the concept is related to regulations and compliance, the related terms are EAR and export controls, dual-use items include items such as computers and software, for example, dual-use items can include items such as encryption software and technical data related to defense articles.
Electronic Export Information (EEI) refers to the information required to… #
S. Census Bureau for exports of goods and services, the concept is related to regulations and compliance, the related terms are export controls and licensing, the EEI is used to collect data on exports of goods and services, for example, the EEI can be used to collect data on exports of controlled technology.
Encryption refers to the process of converting plain text i… #
Encryption refers to the process of converting plain text into cipher text, the concept is related to security and protection, the related terms are decryption and security, encryption is used to protect data from unauthorized access, for example, encryption can be used to protect data transmitted over a network.
End #
User refers to the individual or organization that will ultimately use the exported item or service, the concept is related to regulations and compliance, the related terms are export controls and licensing, the end-user is responsible for complying with relevant regulations and standards, for example, the end-user can be responsible for obtaining the necessary licenses and authorizations for the import and use of controlled technology.
End #
Use refers to the purpose for which the exported item or service will be used, the concept is related to regulations and compliance, the related terms are export controls and licensing, the end-use is used to determine the applicable export controls, for example, the end-use can be used to determine whether a product is subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Export refers to the transfer of goods or services from one… #
Export refers to the transfer of goods or services from one country to another, the concept is related to regulations and compliance, the related terms are import and trade, export is used to describe the transfer of goods or services from one country to another, for example, export can be used to describe the transfer of controlled technology from the United States to a foreign country.
Export Administration Regulations (EAR) refers to the regulations that go… #
Export Administration Regulations (EAR) refers to the regulations that govern the export of dual-use items, the concept is related to regulations and compliance, the related terms are export controls and licensing, the EAR is used to control the export of dual-use items, for example, the EAR can be used to control the export of encryption software and technical data related to defense articles.
Export Control Classification Number (ECCN) refers to the number assigned… #
Export Control Classification Number (ECCN) refers to the number assigned to a product or service to identify its export control classification, the concept is related to regulations and compliance, the related terms are EAR and ITAR, the ECCN is used to determine the applicable export controls, for example, the ECCN can be used to determine whether a product is subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Export Control Reform Act (ECRA) refers to the legislation that reform… #
Export Control Reform Act (ECRA) refers to the legislation that reformed the export control system in the United States, the concept is related to regulations and compliance, the related terms are export controls and licensing, the ECRA is used to streamline the export control process and to simplify the regulations, for example, the ECRA can be used to reduce the number of licenses required for the export of dual-use items.
Foreign National refers to an individual who is not a citizen of t… #
Foreign National refers to an individual who is not a citizen of the United States, the concept is related to regulations and compliance, the related terms are export controls and visa requirements, a foreign national is subject to restrictions on the transfer of controlled technology, for example, a foreign national may require a license or authorization to receive controlled technology.
Harmonized System (HS) refers to the system used to classify and <… #
Harmonized System (HS) refers to the system used to classify and code goods for export and import, the concept is related to regulations and compliance, the related terms are export controls and customs, the HS is used to classify and code goods for export and import, for example, the HS can be used to classify and code goods such as computers and software.
International Traffic in Arms Regulations (ITAR) refers to the regulations</b… #
International Traffic in Arms Regulations (ITAR) refers to the regulations that govern the export of defense articles, the concept is related to regulations and compliance, the related terms are export controls and licensing, the ITAR is used to control the export of defense articles, for example, the ITAR can be used to control the export of firearms and military equipment.
Licensing refers to the process of obtaining permission from a … #
Licensing refers to the process of obtaining permission from a regulatory agency to export a controlled item, the concept is related to regulations and compliance, the related terms are export controls and authorization, licensing is used to ensure that controlled items are not exported to unauthorized parties, for example, licensing can be used to ensure that controlled technology is not exported to a foreign country without the necessary licenses and authorizations.
Multilateral refers to an agreement or arrangement between mult… #
Multilateral refers to an agreement or arrangement between multiple countries, the concept is related to regulations and compliance, the related terms are export controls and international cooperation, multilateral agreements are used to coordinate export controls and to prevent the proliferation of weapons of mass destruction, for example, the Wassenaar Arrangement is a multilateral agreement that coordinates export controls on dual-use items.
National Security refers to the protection of a country 's inter… #
National Security refers to the protection of a country's interests and security from external threats, the concept is related to regulations and compliance, the related terms are export controls and defense, national security is used to justify the control of exports of controlled items, for example, national security can be used to justify the control of exports of defense articles and dual-use items.
No License Required (NLR) refers to a designation that indicates that a <… #
No License Required (NLR) refers to a designation that indicates that a product or service does not require a license to be exported, the concept is related to regulations and compliance, the related terms are export controls and licensing, the NLR designation is used to simplify the export process and to reduce the administrative burden on exporters, for example, the NLR designation can be used to simplify the export of products that are not subject to export controls.
Penalty refers to a fine or penalty imposed on an individual</b… #
Penalty refers to a fine or penalty imposed on an individual or organization for violating export controls, the concept is related to regulations and compliance, the related terms are export controls and enforcement, penalties can be imposed for violating export controls, for example, penalties can be imposed for exporting controlled items without the necessary licenses and authorizations.
Product Classification refers to the process of classifying a p… #
Product Classification refers to the process of classifying a product or service for export control purposes, the concept is related to regulations and compliance, the related terms are export controls and licensing, product classification is used to determine the applicable export controls, for example, product classification can be used to determine whether a product is subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Recordkeeping refers to the process of maintaining records of e… #
Recordkeeping refers to the process of maintaining records of exports and imports, the concept is related to regulations and compliance, the related terms are export controls and auditing, recordkeeping is used to ensure that exporters and importers are complying with relevant regulations and standards, for example, recordkeeping can be used to maintain records of exports and imports of controlled items.
Regulation refers to a rule or standard that governs a particular… #
Regulation refers to a rule or standard that governs a particular activity or industry, the concept is related to regulations and compliance, the related terms are export controls and legislation, regulations are used to ensure that exporters and importers are complying with relevant regulations and standards, for example, regulations can be used to ensure that exporters and importers are complying with the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR).
Risk Assessment refers to the process of identifying and evaluating</i… #
Risk Assessment refers to the process of identifying and evaluating risks associated with exporting controlled items, the concept is related to regulations and compliance, the related terms are export controls and due diligence, risk assessment is used to identify and mitigate risks associated with exporting controlled items, for example, risk assessment can be used to identify and mitigate risks associated with exporting controlled technology to a foreign country.
Sanction refers to a penalty or restriction imposed on a countr… #
Sanction refers to a penalty or restriction imposed on a country or entity for violating export controls, the concept is related to regulations and compliance, the related terms are export controls and enforcement, sanctions can be imposed for violating export controls, for example, sanctions can be imposed for exporting controlled items to a country that is subject to a trade embargo.
Screening refers to the process of screening parties involv… #
Screening refers to the process of screening parties involved in a transaction to ensure that they are not prohibited from participating in the transaction, the concept is related to regulations and compliance, the related terms are export controls and due diligence, screening is used to ensure that parties involved in a transaction are not prohibited from participating in the transaction, for example, screening can be used to ensure that a foreign national is not a prohibited party.
Software refers to a program or set of instructions that is… #
Software refers to a program or set of instructions that is used to control a computer or device, the concept is related to technology and export controls, the related terms are export controls and licensing, software can be subject to export controls, for example, software can be subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Technical Data refers to information that is required for the d… #
Technical Data refers to information that is required for the development, production, or use of a product or service, the concept is related to regulations and compliance, the related terms are export controls and licensing, technical data can be subject to export controls, for example, technical data can be subject to the Export Administration Regulations (EAR) or the International Traffic in Arms Regulations (ITAR).
Trade Compliance refers to the process of ensuring that exports an… #
Trade Compliance refers to the process of ensuring that exports and imports are compliant with relevant regulations and standards, the concept is related to regulations and compliance, the related terms are export controls and import regulations, trade compliance is used to ensure that exporters and importers are complying with relevant regulations and standards, for example, trade compliance can be used to ensure that exporters and importers are complying with the Export Administration Regulations (EAR) and the International Traffic in Arms Regulations (ITAR).
U #
S. Munitions List (USML) refers to the list of items that are subject to the International Traffic in Arms Regulations (ITAR), the concept is related to regulations and compliance, the related terms are export controls and licensing, the USML is used to control the export of defense articles and services, for example, the USML can be used to control the export of firearms and military equipment.
Visa refers to a document that is required for a foreign <i… #
Visa refers to a document that is required for a foreign national to enter or remain in a country, the concept is related to regulations and compliance, the related terms are export controls and immigration, a visa is used to control the movement of foreign nationals into and within a country, for example, a visa can be used to control the movement of foreign nationals who are involved in the development or production of controlled technology.
Wassenaar Arrangement refers to the multilateral agreement that <i… #
Wassenaar Arrangement refers to the multilateral agreement that coordinates export controls on dual-use items, the concept is related to regulations and compliance, the related terms are export controls and international cooperation, the Wassenaar Arrangement is used to coordinate export controls and to prevent the proliferation of weapons of mass destruction, for example, the Wassenaar Arrangement can be used to coordinate export controls on encryption software and technical data related to defense articles.