Re: [TLS] TLS WG Chair Comments on draft-ietf-tls-authz-07

"Angelos D. Keromytis" <angelos@cs.columbia.edu> Thu, 12 February 2009 09:21 UTC

Return-Path: <angelos@cs.columbia.edu>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A4FA53A6969; Thu, 12 Feb 2009 01:21:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.299
X-Spam-Level:
X-Spam-Status: No, score=-2.299 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 91IL3L75K1+a; Thu, 12 Feb 2009 01:21:19 -0800 (PST)
Received: from jalapeno.cc.columbia.edu (jalapeno.cc.columbia.edu [128.59.29.5]) by core3.amsl.com (Postfix) with ESMTP id 8409F3A6963; Thu, 12 Feb 2009 01:21:19 -0800 (PST)
Received: from ADKs-Computer.home (ANice-754-1-6-100.w90-52.abo.wanadoo.fr [90.52.225.100]) (user=ak2052 mech=PLAIN bits=0) by jalapeno.cc.columbia.edu (8.14.1/8.14.1) with ESMTP id n1C9Krho019769 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Thu, 12 Feb 2009 04:20:55 -0500 (EST)
Message-Id: <F66304DF-A615-43FC-9929-D15AD07E3140@cs.columbia.edu>
From: "Angelos D. Keromytis" <angelos@cs.columbia.edu>
To: Alfred HÎnes <ah@tr-sys.de>
In-Reply-To: <200902120002.BAA11916@TR-Sys.de>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"; delsp="yes"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Apple Message framework v930.3)
Subject: Re: [TLS] TLS WG Chair Comments on draft-ietf-tls-authz-07
Date: Thu, 12 Feb 2009 04:20:53 -0500
References: <200902120002.BAA11916@TR-Sys.de>
X-Mailer: Apple Mail (2.930.3)
X-No-Spam-Score: Local
X-Scanned-By: MIMEDefang 2.65 on 128.59.29.5
X-Mailman-Approved-At: Thu, 12 Feb 2009 09:42:06 -0800
Cc: dean@av8.com, tls@ietf.org, ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Feb 2009 09:53:54 -0000

Alfred,
neither of the cited KeyNote drafts (nor the KeyNote system itself) is  
patent-encumbered. However, I admit to not (yet) having paid close  
attention to the details of the IPR issues around tls-authz-extns  
itself and their potential impact to tls-authz-keynote.

I have started draft-keromytis-keynote-x509-01 through the RFC- 
fication process (currently discussing with a reviewer), since it does  
not depend on authz (or any other pending work in any WG). I have been  
waiting for tls-authz-extns to go through the process before I start  
with draft-keromytis-tls-authz-keynote-01. I invite every interested  
party to send me comments. You may find it useful to first read RFCs  
2704 (at least the first few sections) and 2792.
Best,
-Angelos


On Feb 11, 2009, at 7:02 PM, Alfred HÎnes wrote:

> At Wed, 11 Feb 2009 16:20:14 -0500 (EST), Dean Anderson  wrote:
>
>>                                                      ...  And as
>> programmer and developer, I will probably have some non-patented
>> alternatives to present.
>>
>>              --Dean
>
> Dean,
> that's really laudable progress, leading back to technical discussion
> of possible alternative solutions.
> Please indeed prepare such I-D as soon as feasible.
>
>
> I heartly invite other interested parties as well to submit their
> proposals to the TLS WG, and I hereby explicitely would like to
> address those many folks that newly started being interested in
> IETF work in general and further development and application of
> TLS in particular.
>
> In order to make life easier for all participants,
> I suggest to start with streamlined draft names like
> draft-<author>-tlz-authz-<xxx>-00 .
>
> The WG should be able to perform an unprejudized discussion
> of alternative proposals before it comes to determine consensus
> whether there is enough interest and support to warrant adopting
> 'TLS Authorization' as a new work item, and if so, which
> draft(s) to base the WG project on.
>
> I personally promise to review sound draft proposals in time
> before such WG decision (perhaps not initial -00 versions,
> only enough elaborate refined versions).
>
>
> One immediate question to the group and the respective author:
>
> Draft-housley-tls-authz-extns only defines a framework, and
> according to the past exegesis of the imprecise IPR statements
> under discussion, only the application of that framework to
> specific use cases might be encumbered by these claims.
> However, the recent I-D, draft-keromytis-tls-authz-keynote-01,
> together with a supporting sibling document,
> draft-keromytis-keynote-x509-01 (both still rough and lacking
> important details), defines a concrete instantiation of that
> framework.
> In how far is that instantiation encumbered by these IPR claims?
> Is it burdened with other patent claims?
>
>
> Kind regards,
>  Alfred HÎnes.
>
> -- 
>
> +------------------------ 
> +--------------------------------------------+
> | TR-Sys Alfred Hoenes   |  Alfred Hoenes   Dipl.-Math., Dipl.- 
> Phys.  |
> | Gerlinger Strasse 12   |  Phone: (+49)7156/9635-0, Fax:  
> -18         |
> | D-71254  Ditzingen     |  E-Mail:  ah@TR- 
> Sys.de                     |
> +------------------------ 
> +--------------------------------------------+
>
>