Flawed license in document...
Simon Josefsson <jas@extundo.com> Tue, 07 February 2006 00:16 UTC
Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F6GXH-0007nZ-Dc; Mon, 06 Feb 2006 19:16:47 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1F6GXG-0007mc-Cj for ipr-wg@megatron.ietf.org; Mon, 06 Feb 2006 19:16:46 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id TAA27012 for <ipr-wg@ietf.org>; Mon, 6 Feb 2006 19:14:51 -0500 (EST)
Received: from 178.230.13.217.in-addr.dgcsystems.net ([217.13.230.178] helo=yxa.extundo.com ident=root) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1F6GjH-0004pR-L0 for ipr-wg@ietf.org; Mon, 06 Feb 2006 19:29:14 -0500
Received: from latte.josefsson.org (jas@yxa.extundo.com [217.13.230.178]) (authenticated bits=0) by yxa.extundo.com (8.13.4/8.13.4/Debian-3) with ESMTP id k170GL5k031283 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <ipr-wg@ietf.org>; Tue, 7 Feb 2006 01:16:22 +0100
From: Simon Josefsson <jas@extundo.com>
To: ipr-wg@ietf.org
OpenPGP: id=B565716F; url=http://josefsson.org/key.txt
X-Hashcash: 1:21:060207:ipr-wg@ietf.org::GNpYE8ZVDycjNfRN:1Pl2
Date: Tue, 07 Feb 2006 01:16:20 +0100
Message-ID: <jas8xsokoq3.fsf@latte.josefsson.org>
User-Agent: Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00, FORGED_RCVD_HELO autolearn=ham version=3.1.0
X-Spam-Checker-Version: SpamAssassin 3.1.0 (2005-09-13) on yxa-iv
X-Virus-Scanned: ClamAV version 0.84, clamav-milter version 0.84e on yxa.extundo.com
X-Virus-Status: Clean
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 944ecb6e61f753561f559a497458fb4f
Subject: Flawed license in document...
X-BeenThere: ipr-wg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPR-WG <ipr-wg.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipr-wg>, <mailto:ipr-wg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipr-wg@ietf.org>
List-Help: <mailto:ipr-wg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipr-wg>, <mailto:ipr-wg-request@ietf.org?subject=subscribe>
Sender: ipr-wg-bounces@ietf.org
Errors-To: ipr-wg-bounces@ietf.org
It seems draft-eastlake-sha2-02.txt is a document that would have benefited from the ideas discussed in this WG. The license text that the draft-eastlake-sha2-02.txt authors picked seem to be incompatible with some free software licenses and some proprietary license to me. That is counter to the stated goal that the code should be easily usable by the community. See my post below. What may be relevant for this WG to consider is the license text used. Reviewing actual wording of licenses used in RFCs helps understanding what rights are missing from the IETF granted permissions. I'm quoting the license used in draft-eastlake-sha2-02.txt for easy reference. (The license in RFC 3492 is another example, however it fortunately appear to be compatible with all relevant licenses.) Btw, any progress on the IPR WG charter update? 1.1 License Royalty free license to copy and use this software is granted provided that this document is identified in all material mentioning or referencing this software. Royalty free license is also granted to make and use derivative works provided that such works are identified as derived from this work. The authors make no representations concerning either the merchantability of this software or the suitability of this software for any particular purpose. It is provided "as is" without express or implied warranty of any kind. Regards, Simon From: Simon Josefsson <jas@extundo.com> Subject: Re: Document Action: 'US Secure Hash Algorithms (SHA and HMAC-SHA)' to Informational RFC Newsgroups: gmane.ietf.general Date: Tue, 07 Feb 2006 00:11:33 +0100 The IESG <iesg-secretary@ietf.org> writes: > Note to the RFC Editor > > To resolve the concerns with the term "open source", please make the > following changes: > > In the Abstract: > > OLD: > > The purpose of this document is to make open source code > performing these hash functions conveniently available to > the Internet community. > > NEW: > > The purpose of this document is to make source code > performing these hash functions conveniently available to > the Internet community. > > In Section 10: > > OLD: > > This document is intended to provide convenient open source > access by the Internet community to the United States of > America Federal Information Processing Standard Secure Hash > Algorithms (SHAs) [FIPS 180-2] and HMACs based thereon. > > NEW: > > This document provides the Internet community convenient > access to source code that implements the United States of > America Federal Information Processing Standard Secure Hash > Algorithms (SHAs) [FIPS 180-2] and HMACs based upon these > one-way hash functions. See license in Section 1.1. The license in section 1.1 reads: Royalty free license to copy and use this software is granted provided that this document is identified in all material mentioning or referencing this software. I believe this part of the license is incompatible with some licenses used to implement IETF protocols. It has the same problem as the advertisement clause in the old BSD license. It is thus questionable whether the document achieve its stated goal. Btw: > The IESG has approved the following document: > > - 'US Secure Hash Algorithms (SHA and HMAC-SHA) ' > <draft-eastlake-sha2-02.txt> as an Informational RFC > > This document has been reviewed in the IETF but is not the product of an > IETF Working Group. Was there a last call for this document? I do not recall seeing it. Thanks, Simon _______________________________________________ Ietf mailing list Ietf@ietf.org https://www1.ietf.org/mailman/listinfo/ietf _______________________________________________ Ipr-wg mailing list Ipr-wg@ietf.org https://www1.ietf.org/mailman/listinfo/ipr-wg
- Flawed license in document... Simon Josefsson
- Re: Flawed license in document... Ted Hardie
- Re: Flawed license in document... Don Armstrong
- Re: Flawed license in document... Frank Ellermann
- Re: Flawed license in document... Ted Hardie
- Re: Flawed license in document... Simon Josefsson
- Re: Flawed license in document... Ted Hardie
- Re: Flawed license in document... Simon Josefsson
- Re: Flawed license in document... todd glassey