In the early-to-mid 1990s, as the internet shifts from academic and military-adjacent use to commercial scale, multiple governments and engineering communities clash over who controls communication. Articles describe how the NSFNET era gives way to commercial interconnection in 1992–1993, with gateways and routing changes such as CIDR and the move toward BGP-4 to keep the expanding network stable. At the same time, security attention shifts from perimeter assumptions toward vulnerabilities found in widely deployed TCP/IP implementations, including issues linked to packet handling and infiltration techniques.

By 1994, the dispute increasingly centers on encryption strength and governance. The NSA-backed Clipper Chip proposal includes key-escrow concepts, triggering opposition from privacy advocates and technologists who push for end-to-end encryption tools such as PGP. Concurrently, U.S. export controls treat strong encryption as a “munition” under ITAR, leading to a domestic/export bifurcation that often caps international “export-grade” encryption at weaker key lengths. The resulting pressure forces companies to maintain different code paths for different jurisdictions and contributes to the legal and technical complexity of shipping global security products. The overall pattern is a move from visibility and control within specialized environments toward widespread commercial deployment with reduced transparency.