J.R.McHale

**The Latest (08.01.2015) – Proposed Rules Pulled for Rewrite:**

> [Pardon the “Intrusion” – Cybersecurity Worries Scuttle Wassenaar Changes](http://www.lexology.com/library/detail.aspx?g=b82d52ba-6d8a-4101-9f10-e064762ba9cb) – Lexology

> [Unusual Re-do of US Wassenaar Rules Applauded](https://threatpost.com/unusual-re-do-of-us-wassenaar-rules-applauded/114096/) – Kaspersky Lab Threat Post

> [The US is Rewriting its Controversial Zero-day Export Policy](http://www.theverge.com/2015/7/29/9068665/wassenaar-export-zero-day-revisions-department-of-commerce) – The Verge

**Proposed Implementation:**

> Bureau of Industry and Standards’ [Wassenaar Arrangement 2013 Plenary Agreements Implementation: Intrusion and Surveillance Items](https://www.federalregister.gov/articles/2015/05/20/2015-11642/wassenaar-arrangement-2013-plenary-agreements-implementation-intrusion-and-surveillance-items) ([pdf](); 49 pages)

> BIS [FAQs](http://www.bis.doc.gov/index.php/policy-guidance/faqs?view=category&id=114#subcat200) on the Intrusion and Surveillance Items Implementation

**Background:**

> [Wassenaar Arrangement](https://en.wikipedia.org/?title=Wassenaar_Arrangement) – Wikipedia

> [The International Rules that Have the Security World on Alert](http://www.theverge.com/2015/5/22/8644185/wassenaar-arrangement-export-zero-day-research) – The Verge

**Analysis and Opinion:**

> [Why an Arms Control Pact has Security Experts Up in Arms](http://www.wired.com/2015/06/arms-control-pact-security-experts-arms/) – Kim Zetter in Wired

> [Proposed U.S. Export Controls: Implications for Zero-Day Vulnerabilities and Exploits](http://www.lawfareblog.com/proposed-us-export-controls-implications-zero-day-vulnerabilities-and-exploits) – Mailyn Fidler at LawFare

> [Changes to Export Control Arrangement Apply to Computer Exploits and More](http://justsecurity.org/5703/export-control-arrangement-apply-computer-exploits/) – Jennifer Granick and Mailyn Fidler at JustSecurity

> [What Is the U.S. Doing About Wassenaar, and Why Do We Need to Fight It?](https://www.eff.org/deeplinks/2015/05/we-must-fight-proposed-us-wassenaar-implementation) – EFF

> Also from the EFF: [Commerce Department FAQ on Proposed Wassenaar Implementation Gives Answers, Raises More Questions](https://www.eff.org/deeplinks/2015/06/commerce-department-faq-proposed-wassenaar-implementation-gives-answers-raises)

> [Why Changes to Wassenaar Make Oppression and Surveillance Easier, Not Harder](http://addxorrol.blogspot.com/2015/05/why-changes-to-wassenaar-make.html) – ADD/XOR/ROL blog

> [Why You Should Fear the New Regulations More Than You Think](https://lists.immunityinc.com/pipermail/dailydave/2015-June/000958.html) – Dave Aitel

**Related:**

> Regulating the Zero-Day Vulnerability Trade: A Preliminary Analysis ([pdf](http://moritzlaw.osu.edu/students/groups/is/files/2015/06/Fidler-Second-Review-Changes-Made.pdf); 78 pages) – academic paper by Mailyn Fidler forthcoming in “I/S: A Journal of Law and Policy for the Information Society”