Re: [A2k] TODAY/URGENT: Stop IETF Enactment of Patented Standard for TLS

"Jeffrey A. Williams" <jwkckid1@ix.netcom.com> Wed, 11 February 2009 14:44 UTC

Return-Path: <jwkckid1@ix.netcom.com>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EC6FC3A6B10 for <ietf@core3.amsl.com>; Wed, 11 Feb 2009 06:44:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.855
X-Spam-Level:
X-Spam-Status: No, score=-0.855 tagged_above=-999 required=5 tests=[AWL=0.752, BAYES_00=-2.599, DATE_IN_PAST_12_24=0.992]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8rMjKFbLXZvJ for <ietf@core3.amsl.com>; Wed, 11 Feb 2009 06:44:51 -0800 (PST)
Received: from elasmtp-kukur.atl.sa.earthlink.net (elasmtp-kukur.atl.sa.earthlink.net [209.86.89.65]) by core3.amsl.com (Postfix) with ESMTP id 401E83A6935 for <ietf@ietf.org>; Wed, 11 Feb 2009 06:44:51 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=ix.netcom.com; b=AObnmNBbwgLPmDsR7HQXZi34Ya+oGGu0cZ10uFA7f+9DeyHUL21pYwQ0qg7/ZFrl; h=Received:Message-ID:Date:From:Organization:X-Mailer:X-Accept-Language:MIME-Version:To:Subject:References:Content-Type:Content-Transfer-Encoding:X-ELNK-Trace:X-Originating-IP;
Received: from [4.227.99.120] (helo=ix.netcom.com) by elasmtp-kukur.atl.sa.earthlink.net with esmtpa (Exim 4.67) (envelope-from <jwkckid1@ix.netcom.com>) id 1LXGKZ-00018D-0q; Wed, 11 Feb 2009 09:44:53 -0500
Message-ID: <4991AC75.2B32F788@ix.netcom.com>
Date: Tue, 10 Feb 2009 08:33:57 -0800
From: "Jeffrey A. Williams" <jwkckid1@ix.netcom.com>
Organization: IDNS and Spokesman for INEGroup
X-Mailer: Mozilla 4.8 [en] (Windows NT 5.0; U)
X-Accept-Language: en
MIME-Version: 1.0
To: seth.johnson@RealMeasures.dyndns.org, ietf@ietf.org, Stephen Northcutt <stephen@sans.edu>
Subject: Re: [A2k] TODAY/URGENT: Stop IETF Enactment of Patented Standard for TLS
References: <48804AFB.5E3A3E4B@RealMeasures.dyndns.org> <49524E6B.B39D16B7@RealMeasures.dyndns.org> <4992C5DC.3B39E3AD@RealMeasures.dyndns.org>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-ELNK-Trace: c8e3929e1e9c87a874cfc7ce3b1ad11381c87f5e51960688c7f4482d4ac0b6a5b2d10ac0abb17bfc350badd9bab72f9c350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 4.227.99.120
X-Mailman-Approved-At: Wed, 11 Feb 2009 14:07:38 -0800
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Feb 2009 14:44:53 -0000

Seth and all,

  I agree, the IETF needs to be allot more forceful here.  Why they
are not in this instance is difficult for me to understand and goes against
IETF tradition as well.

Seth Johnson wrote:

> (Urgent.  Send your note TODAY and CONFIRM the automatic reply from
> IETF.  You can cc campaigns@fsf.org .  Three links below, FSF's action
> page, Glyn Moody's blog, and the list announcement for TLS-AUTHZ at
> IETF.  -- Seth)
>
> > http://www.fsf.org/news/reoppose-tls-authz-standard
>
> Send comments opposing TLS-authz standard by February 11
>
> Last January, the Free Software Foundation issued an alert to efforts
> at the Internet Engineering Task Force (IETF) to sneak a
> patent-encumbered standard for "TLS authorization" through a back-door
> approval process that was referenced as "experimental" or
> "informational"
> (http://www.fsf.org/news/reoppose-tls-authz-standard/newsitem_view)
> The many comments sent to IETF at that time alerted committee members
> to this attempt and successfully prevented the standard gaining
> approval.
>
> Unfortunately, attempts to push through this standard have been
> renewed and become more of a threat.  The proposal now at the IETF has
> a changed status from "experimental" to "proposed standard".  The FSF
> is again issuing an alert and request for comments to be sent urgently
> and prior to the February 11 deadline to ietf@ietf.org.  Please
> include us in your message by a CC to campaigns@fsf.org.  You should
> also expect an automated reply from ietf@ietf.org, which you will need
> to answer to confirm your original message.
>
> That patent in question is claimed by RedPhone Security
> (https://datatracker.ietf.org/ipr/1026/)  RedPhone has given a
> license to anyone who implements the protocol, but they still threaten
> to sue anyone that uses it.
>
> If our voice is strong enough, the IETF will not approve this standard
> on any level unless the patent threat is removed entirely with a
> royalty-free license for all users.
>
> Further background for your comment
>
> See the IETF summary:
> > http://www.ietf.org/mail-archive/web/ietf-announce/current/msg05617.html
>
> Much of the communication on the Internet happens between computers
> according to standards that define common languages.  If we are going
> to live in a free world using free software, our software must be
> allowed to speak these languages.
>
> Unfortunately, discussions about possible new standards are tempting
> opportunities for people who would prefer to profit by extending
> proprietary control over our communities. If someone holds a software
> patent on a technique that a programmer or user has to use in order to
> make use of a standard, then no one is free without getting permission
> from and paying the patent holder
> (http://www.gnu.org/philosophy/fighting-software-patents.html) If we
> are not careful, standards can become major barriers to computer users
> having and exercising their freedom.
>
> We depend on organizations like the Internet Engineering Task Force
> (IETF) and the Internet Engineering Steering Group (IESG) to evaluate
> new proposals for standards and make sure that they are not encumbered
> by patents or any other sort of restriction that would prevent free
> software users and programmers from participating in the world they
> define.
>
> In February 2006, a standard for "TLS authorization" was introduced in
> the IETF for consideration
> (http://tools.ietf.org/wg/tls/draft-housley-tls-authz-extns-07.txt)
> Very late in the discussion, a company called RedPhone Security
> disclosed (this disclosure has subsequently been unpublished from the
> IETF website) that they applied for a patent which would need to be
> licensed to anyone wanting to practice the standard
> (https://datatracker.ietf.org/ipr/833/) After this disclosure, the
> proposal was rejected.
>
> Despite claims that RedPhone have offered a license for implementation
> of this protocol, users of this protocol would still be threatened by
> the patent. The IETF should continue to oppose this standard until
> RedPhone provide a royalty-free license for all users.
>
> Media Contacts
>
> Peter T. Brown
> Executive Director
> Free Software Foundation
> (617)542-5942
> campaigns@fsf.org
>
> ---
>
> > http://www.computerworlduk.com/community/blogs/index.cfm?blogid=14&entryid=1845
>
> Help Fight This Patent-Encumbered IETF Standard
>
> February 10, 2009
>
> Posted by: Glyn Moody
>
> I've written numerous times about the importance of writing to
> governments about their hare-brained schemes, but this one is rather
> different. In this case, it's the normally sane Internet Engineering
> Task Force that wants to do something really daft. The FSF explains:
>
> Last January, the Free Software Foundation issued an alert to efforts
> at the Internet Engineering Task Force (IETF) to sneak a
> patent-encumbered standard for "TLS authorization" through a back-door
> approval process that was referenced as "experimental" or
> "informational". The many comments sent to IETF at that time alerted
> committee members to this attempt and successfully prevented the
> standard gaining approval.
>
> Unfortunately, attempts to push through this standard have been
> renewed and become more of a threat. The proposal now at the IETF has
> a changed status from "experimental" to "proposed standard".
>
> This is a throwback to the bad old days of sneaking patents into
> nominal standards. It is yet another reason why such patents should
> not be given in the first place. But until such time as the patent
> offices around the world come to their senses, the only option is to
> fight patent-encumbered standards on an individual basis. Here are the
> details for doing so:
>
> The FSF is again issuing an alert and request for comments to be sent
> urgently and prior to the February 11 deadline to ietf@ietf.org.
> Please include us in your message by a CC to campaigns@fsf.org. You
> should also expect an automated reply from ietf@ietf.org, which you
> will need to answer to confirm your original message.
>
> Here's what I've sent:
>
> I am writing to ask you not to approve the proposed patent-encumbered
> standard for TLS authorisation. To do so would fly in the face of the
> IETF's fundamental commitment to openness. It would weaken not just
> the standard itself, but the IETF's authority in this sphere.
>
> ---
>
> > http://www.ietf.org/mail-archive/web/ietf-announce/current/msg05617.html
>
> Fourth Last Call: draft-housley-tls-authz-extns
>
>     * To: IETF-Announce <ietf-announce at ietf.org>
>     * Subject: Fourth Last Call: draft-housley-tls-authz-extns
>     * From: The IESG <iesg-secretary at ietf.org>
>     * Date: Wed, 14 Jan 2009 08:18:20 -0800 (PST)
>     * List-archive: <http://www.ietf.org/pipermail/ietf-announce>
>     * Reply-to: ietf at ietf.org
>
> On June 27, 2006, the IESG approved "Transport Layer Security (TLS)
> Authorization Extensions," (draft-housley-tls-authz-extns) as a
> proposed standard. On November 29, 2006, Redphone Security (with whom
> Mark Brown, a co-author of the draft is affiliated) filed IETF IPR
> disclosure 767.
>
> Because of the timing of the IPR Disclosure, the IESG withdrew its
> approval of draft-housley-tls-authz-extns.  A second IETF Last Call
> was initiated to determine whether the IETF community still had
> consensus to publish  draft-housley-tls-authz-extns as a proposed
> standard given the IPR claimed.  Consensus to publish as a standards
> track document was not demonstrated, and the document was withdrawn
> from IESG consideration.
>
> A third IETF Last Call was initiated to determine whether the IETF
> community had consensus to publish draft-housley-tls-authz-extns as an
> experimental track RFC with knowledge of the IPR disclosure from
> Redphone Security.  Consensus to publish as experimental was not
> demonstrated; a substantial segment of the community objected to
> publication on any track in light of the IPR terms.
>
> Since the third Last Call, RedPhone Security filed IETF IPR disclosure
> 1026.  This disclosure statement asserts in part that "the techniques
> for sending and receiving authorizations defined in TLS Authorizations
> Extensions (version draft-housley-tls-authz-extns-07.txt) do not
> infringe upon RedPhone Security's intellectual property rights".  The
> full text of IPR disclosure 1026 is available at:
>
>         https://datatracker.ietf.org/ipr/1026/
>
> This Last Call is intended to determine whether the IETF community had
> consensus to publish  draft-housley-tls-authz-extns as a proposed
> standard given IPR Disclosure 1026.
>
> The IESG is considering approving this draft as a standards track RFC.
> The IESG solicits final comments on whether the IETF community has
> consensus to publish draft-housley-tls-authz-extns as a proposed
> standard. Comments can be sent to ietf at ietf.org or exceptionally to
> iesg at ietf.org. Comments should be sent by 2009-02-11.
>
> A URL of this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-housley-tls-authz-extns-07.txt
>
> _______________________________________________
> IETF-Announce mailing list
> IETF-Announce at ietf.org
> https://www.ietf.org/mailman/listinfo/ietf-announce
>
> _______________________________________________
> A2k mailing list
> A2k@lists.essential.org
> http://lists.essential.org/mailman/listinfo/a2k

Regards,

Spokesman for INEGroup LLA. - (Over 284k members/stakeholders strong!)
"Obedience of the law is the greatest freedom" -
   Abraham Lincoln
"YES WE CAN!"  Barack ( Berry ) Obama

"Credit should go with the performance of duty and not with what is
very often the accident of glory" - Theodore Roosevelt

"If the probability be called P; the injury, L; and the burden, B;
liability depends upon whether B is less than L multiplied by
P: i.e., whether B is less than PL."
United States v. Carroll Towing  (159 F.2d 169 [2d Cir. 1947]
===============================================================
Updated 1/26/04
CSO/DIR. Internet Network Eng. SR. Eng. Network data security IDNS.
div. of Information Network Eng.  INEG. INC.
ABA member in good standing member ID 01257402 E-Mail
jwkckid1@ix.netcom.com
My Phone: 214-244-4827