Which countries consider decompilation and reverse engineering for security research legal?
posted 3 years ago
In many jurisdictions, reverse engineering, especially decompilation of software without explicit permission from the vendor is forbidden and it is widely seen a copyrights law violation.
However, there are some exceptions in some legal jurisdictions, for instance:
In EU law, the exception is to ascertain interoperability of the software. (see Directive 2009/24/EC — the legal protection of computer programs)
Under the US law, the fair use doctrine is recognized. (cf. Sega vs. Accolade (977 F.2d 1510))
Moreover, the Australian Copyright Amendment (Computer Programs) Bill 1999 provides that "security testing and correcting a security flaw" is permitted.
Which other legal jurisdictions explicitly recognizes the right to reverse engineering and decompilation for security purposes?