Re: [Cfrg] Patents and the new elliptic curves

["Blumenthal, Uri - 0558 - MITLL" <uri@ll.mit.edu>]

On 9/17/14, 19:24 , "Harry Halpin" <hhalpin@w3.org> wrote:

>Personally, I don't think patents should be an issue in deciding curves
>for CFRG recommendation by NIST. Instead, I'd like a purely technical
      ^^^^^^^^^^^^^^^^^^^^^^^^^^^???
>judgment for the recommendation by CFRG, and am eagerly awaiting it.

IETF and IRTF have always been about interoperable *implementations*. Thus
there cannot be a “purely technical” judgement that ignores such an
important aspect of implementability.

I’d like to remind that IETF hasn’t touched RSA for many years precisely
because it was not available to implementers under the patent
strangulation. Similar situation repeated with ECC. (And something similar
is likely to happen with NTRU, for much the same reasons.)

>I'm not a lawyer but I could double-check, yet I think that one nice
>side-effect of baking the CFRG non-NIST recommendation into a W3C spec
>would be that a patent troll would have a very difficult time I think
>going up against the W3C RF patent policy [2]. Note as part of W3C,
>Microsoft could commit patents to NUMS to RF licensing. And I'd be
>surprised to say the least if DJB had patents, and concerns of others
>trolling his work would also I think be strengthened by the W3C RF
>licensing.

Possible.


>I believe the IETF also has a patent policy as well, although I'll leave
>it to someone from the IETF to fill us in on that.
>
>  yours,
>      harry
>
>[1] https://dvcs.w3.org/hg/webcrypto-api/raw-file/tip/spec/Overview.html
>[2] http://www.w3.org/Consortium/Patent-Policy-20040205/
>
>On 09/17/2014 08:06 PM, Blumenthal, Uri - 0558 - MITLL wrote:
>> On 9/17/14, 13:30 , "Michael Hamburg" <mike@shiftleft.org> wrote:
>> 
>>> …….But I continue to hope that other people with experience in
>>> implementations and patents will contribute their wisdom on what
>>>patents
>>> might apply to the latest batch of curves.  This is not legally
>>>required,
>>> and I don’t expect to receive legally rigorous analyses.  It also
>>> probably has no bearing on which curve should be selected, at least to
>>> the degree that any patents can be worked around.
>> 
>> If a curve is selected because it appears to offer significant
>>performance
>> benefits over other (or over the currently used) curves, and then it
>>turns
>> out that a patent prevents you from realizing those performance
>> advantages…?
>> 
>>>
>> 
>> 
>> 
>>>> On Sep 17, 2014, at 5:01 AM, Phillip Hallam-Baker
>>>> <phill@hallambaker.com> wrote:
>>>>
>>>> I am not a lawyer. But even if I was, I would not be your lawyer. And
>>>> that makes a huge difference.
>>>>
>>>> Expecting any party to issue a free legal opinion on this subject is
>>>> futile. Microsoft, Google and all the major companies have spent
>>>> several billion dollars in the past few years on settlements and
>>>> damages in a long list of patent suits, most of which are utterly
>>>> devoid of any merit whatsoever.
>>>>
>>>> One of the patent cases I was involved in was based on a particularly
>>>> twisted interpretation of a patent claim that the patent examiner had
>>>> specifically excluded in the patent prosecution history.
>>>>
>>>> My concern here is not the risk of a lawsuit against my employer, it
>>>> is the risk of a lawsuit against my customers.
>>>>
>>>>
>>>> That said, the ECC patents are very different to the usual software
>>>> patents. These are not 'do it on the Internet' type 'inventions' and
>>>> they aren't submarine patents with claims on stuff invented by other
>>>> people in continuations after the application was first filed. These
>>>> are patents making claims about very specific inventions. And the
>>>> original patents on the principal inventions were filed between 1985
>>>> and 1990.