IETF Logo Mail Archive

Re: IETF Last Call for two IPR WG Dcouments

Simon Josefsson <simon@josefsson.org> Fri, 28 March 2008 15:17 UTC

Return-Path: <ietf-bounces@ietf.org>
X-Original-To: ietfarch-ietf-archive@core3.amsl.com
Delivered-To: ietfarch-ietf-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3A37A28C10C; Fri, 28 Mar 2008 08:17:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.516
X-Spam-Level:
X-Spam-Status: No, score=-100.516 tagged_above=-999 required=5 tests=[AWL=-0.079, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WkQsGfbb9-pA; Fri, 28 Mar 2008 08:17:04 -0700 (PDT)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 20D3A28C3A8; Fri, 28 Mar 2008 08:17:04 -0700 (PDT)
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 72FB53A6DD0 for <ietf@core3.amsl.com>; Fri, 28 Mar 2008 08:17:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TkM3HL-V5dmv for <ietf@core3.amsl.com>; Fri, 28 Mar 2008 08:16:59 -0700 (PDT)
Received: from yxa.extundo.com (yxa.extundo.com [83.241.177.38]) by core3.amsl.com (Postfix) with ESMTP id 20AC828C194 for <ietf@ietf.org>; Fri, 28 Mar 2008 08:16:58 -0700 (PDT)
Received: from mocca.josefsson.org (yxa.extundo.com [83.241.177.38]) (authenticated bits=0) by yxa.extundo.com (8.13.4/8.13.4/Debian-3sarge3) with ESMTP id m2SFGpi9021434 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 28 Mar 2008 16:16:51 +0100
From: Simon Josefsson <simon@josefsson.org>
To: "Joel M. Halpern" <jmh@joelhalpern.com>
Subject: Re: IETF Last Call for two IPR WG Dcouments
References: <20080324200545.D6E6328C3AE@core3.amsl.com> <87myoji2ut.fsf@mocca.josefsson.org> <47ECFEF8.6050400@joelhalpern.com>
OpenPGP: id=B565716F; url=http://josefsson.org/key.txt
X-Hashcash: 1:22:080328:ietf@ietf.org::pJF75EY0qVAngn2I:4ctI
X-Hashcash: 1:22:080328:jmh@joelhalpern.com::qbO1CjiV50fSLadK:0X2Xm
Date: Fri, 28 Mar 2008 16:16:51 +0100
In-Reply-To: <47ECFEF8.6050400@joelhalpern.com> (Joel M. Halpern's message of "Fri, 28 Mar 2008 10:21:44 -0400")
Message-ID: <877ifmq3oc.fsf@mocca.josefsson.org>
User-Agent: Gnus/5.110007 (No Gnus v0.7) Emacs/22.1 (gnu/linux)
MIME-Version: 1.0
X-Virus-Scanned: ClamAV version 0.88.2, clamav-milter version 0.88.2 on yxa.extundo.com
X-Virus-Status: Clean
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

"Joel M. Halpern" <jmh@joelhalpern.com> writes:

> I do not understand the problem you want addressed.  The way this is 
> worded, it doesn't matter what "open source" or "free software" is or 
> becomes.  The intention is to grant anyone to do anything with the code 
> segments.  That's what we ask the trust to do. Further in line.

The problem is that without proper guidelines on how to make a software
license compatible with free software licenses, it is possible to end up
with something that won't be compatible, and thus wouldn't meet the
intended goals.

Given that the IETF Trust doesn't publish drafts or have a history of
asking for community review on the legal license they chose, I believe
it is important that the IETF articulate its wishes in ways that reduce
chances of misunderstandings or are open for interpretation.

> Simon Josefsson wrote:
>> Regarding -outbound section 4.3:
>> 
> ...
>> 
>>    As such, the rough consensus is that the IETF Trust is to grant
>>    rights such that code components of IETF contributions can be
>>    extracted, modified, and used by anyone in any way desired.  To
>>    enable the broadest possible extraction, modification and usage, the
>>    IETF Trust should avoid adding software license obligations beyond
>>    those already present in a contribution.  The granted rights to
>>    extract, modify and use code should allow creation of derived works
>>    outside the IETF that may carry additional license obligations.
> This says that the trust is to grant rights so that code can be 
> extracted, modified, and used by ANYONE.  I.e. our grant will not place 
> restrictions on people.

Agreed.

>> I believe the intention here is good, but it leaves the IETF Trust with
>> no guidelines on how to write the license declaration that is likely to
>> work well in practice with actual products.  There are no reference to
>> what "open source" means in this context, and references to "free
>> software" is missing.
>> 
>> I believe it would be a complete failure if code-like portions of RFCs
>> cannot be included into open source and free software products such as
>> the Debian project.
> If we grant anyone the right to use the code any way they want, which 
> means that we specifically can not require preservation of notices or 
> anything else, how could it fail to meet the requirements of the 
> specific cases you list?

If you show me the software license that is going to be used, the
community will be able to tell you.

Writing software licenses that are compatible with free software
licenses is a complicated area, and there are many ways to fail.  If you
haven't evaluated licenses for compatibility before, I suggest to look
at what the debian-legal list has been doing.  There are subtle issues
that can prevent a license from giving the necessary rights.  As far as
I know the IETF Trust does not have extensive knowledge of free software
licensing and license compatibility considerations.  Helping them to get
this right by providing some sanity tests (the OSD, FSD and DFSG) to run
their drafts against will help them.

>> To give the Trust something concrete to work with I propose to add the
>> following:
>> 
>>   To make sure the granted rights are usable in practice, they need to
>>   at least meet the requirements of the Open Source Definition [OSD],
>>   the Free Software Definition [FSD], and the Debian Free Software
>>   Guidelines [DFSG].
>> 
>> For those who fear that this will lead to complexity: releasing
>> something that is compatible with those requirements is simple.  The
>> modified BSD license meets those requirements, as does a number of other
>> methods, including releasing the work into the public domain.
> My concern is not complexity.  Referencing the specific documents is 
> more restrictive than what the working group recommended.  I don't see 
> why that would help anything.

Please read again what I proposed, in particular "at least meet the
requirements".  If the Trust's software license do not meet those
requirements, then it clearly will not meet the intended IETF goals that
we agree on.

/Simon
_______________________________________________
IETF mailing list
IETF@ietf.org
https://www.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email