IETF Logo Mail Archive

Re: Document Action: 'US Secure Hash Algorithms (SHA and HMAC-SHA)' to Informational RFC

Simon Josefsson <jas@extundo.com> Mon, 06 February 2006 23:12 UTC

Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F6FWf-0001bU-Fb; Mon, 06 Feb 2006 18:12:05 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F6FWd-0001Zl-Ma for ietf@megatron.ietf.org; Mon, 06 Feb 2006 18:12:03 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA20053 for <ietf@ietf.org>; Mon, 6 Feb 2006 18:10:09 -0500 (EST)
Received: from 178.230.13.217.in-addr.dgcsystems.net ([217.13.230.178] helo=yxa.extundo.com ident=root) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1F6Fie-0001ax-D9 for ietf@ietf.org; Mon, 06 Feb 2006 18:24:30 -0500
Received: from latte.josefsson.org (jas@yxa.extundo.com [217.13.230.178]) (authenticated bits=0) by yxa.extundo.com (8.13.4/8.13.4/Debian-3) with ESMTP id k16NBZ1E023476 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <ietf@ietf.org>; Tue, 7 Feb 2006 00:11:35 +0100
From: Simon Josefsson <jas@extundo.com>
To: ietf@ietf.org
References: <E1F6ETk-0002Bq-Km@newodin.ietf.org>
OpenPGP: id=B565716F; url=http://josefsson.org/key.txt
X-Hashcash: 1:21:060206:rfc-editor@rfc-editor.org::aV7OWr639uvEjQW+:A4J
X-Hashcash: 1:21:060206:iab@iab.org::Kw+IUQHTAOWiCcf3:B6H1
X-Hashcash: 1:21:060206:ietf-announce@ietf.org::rOMY9J4hDGRdG9vd:Gqc7
X-Hashcash: 1:21:060206:iesg-secretary@ietf.org::0+CTaE7qKQSsycPu:Qzqs
X-Hashcash: 1:21:060206:ietf@ietf.org::WnSmPXBENTuA8RCv:0/st
Date: Tue, 07 Feb 2006 00:11:33 +0100
In-Reply-To: <E1F6ETk-0002Bq-Km@newodin.ietf.org> (The IESG's message of "Mon, 06 Feb 2006 17:05:00 -0500")
Message-ID: <jaslkwokrq2.fsf@latte.josefsson.org>
User-Agent: Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00, FORGED_RCVD_HELO autolearn=ham version=3.1.0
X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on yxa-iv
X-Virus-Scanned: ClamAV version 0.84, clamav-milter version 0.84e on yxa.extundo.com
X-Virus-Status: Clean
X-Spam-Score: 0.0 (/)
X-Scan-Signature: e8a67952aa972b528dd04570d58ad8fe
Subject: Re: Document Action: 'US Secure Hash Algorithms (SHA and HMAC-SHA)' to Informational RFC
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

The IESG <iesg-secretary@ietf.org> writes:

> Note to the RFC Editor
>
>   To resolve the concerns with the term "open source", please make the
>   following changes:
>
>   In the Abstract:
>
>     OLD:
>
>       The purpose of this document is to make open source code
>       performing these hash functions conveniently available to
>       the Internet community.
>
>     NEW:
>
>       The purpose of this document is to make source code
>       performing these hash functions conveniently available to
>       the Internet community.
>
>   In Section 10:
>
>     OLD:
>
>       This document is intended to provide convenient open source
>       access by the Internet community to the United States of
>       America Federal Information Processing Standard Secure Hash
>       Algorithms (SHAs) [FIPS 180-2] and HMACs based thereon.
>
>     NEW:
>
>       This document provides the Internet community convenient
>       access to source code that implements the United States of
>       America Federal Information Processing Standard Secure Hash
>       Algorithms (SHAs) [FIPS 180-2] and HMACs based upon these
>       one-way hash functions.  See license in Section 1.1.

The license in section 1.1 reads:

   Royalty free license to copy and use this software is granted
   provided that this document is identified in all material
   mentioning or referencing this software.

I believe this part of the license is incompatible with some licenses
used to implement IETF protocols.  It has the same problem as the
advertisement clause in the old BSD license.  It is thus questionable
whether the document achieve its stated goal.

Btw:

> The IESG has approved the following document:
>
> - 'US Secure Hash Algorithms (SHA and HMAC-SHA) '
>    <draft-eastlake-sha2-02.txt> as an Informational RFC
>
> This document has been reviewed in the IETF but is not the product of an
> IETF Working Group.

Was there a last call for this document?  I do not recall seeing it.

Thanks,
Simon

_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email