"The key reason ActiveX is mandated by financial institutions is that Korea has its own national encryption scheme called SEED that is used in place of SSL. The reason this came to be stemmed from the fact that US export law in the late 1990s didn't permit the export of web browsers with more than 40 bit encryption. This meant that an ActiveX SEED plug-in was used in place of browser SSL. While there are Java and Netscape implementations of SEED, it was almost never implemented. ActiveX is so dominant that KFTC (Korea Financial Telecommunications and Clearings Institute) won't even assign users security certificates unless they're using Internet Explorer with ActiveX."