Re: [TLS] Last Call: draft-ietf-tls-extractor (Keying MaterialExporters for Transport Layer Security (TLS)) to Proposed Standard

Dean Anderson <dean@av8.com> Tue, 28 July 2009 17:58 UTC

Return-Path: <dean@av8.com>
X-Original-To: tls@core3.amsl.com
Delivered-To: tls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5FC263A6D15; Tue, 28 Jul 2009 10:58:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.138
X-Spam-Level:
X-Spam-Status: No, score=-2.138 tagged_above=-999 required=5 tests=[AWL=-0.622, BAYES_00=-2.599, URIBL_RHS_DOB=1.083]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WeQuxGsChGVU; Tue, 28 Jul 2009 10:58:03 -0700 (PDT)
Received: from cirrus.av8.net (cirrus.av8.net [130.105.36.66]) by core3.amsl.com (Postfix) with ESMTP id 383293A6CD1; Tue, 28 Jul 2009 10:58:03 -0700 (PDT)
Received: from cirrus.av8.net (cirrus.av8.net [130.105.36.66]) (authenticated bits=0) by cirrus.av8.net (8.12.11/8.12.11) with ESMTP id n6SHvv3d014271 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO); Tue, 28 Jul 2009 13:57:58 -0400
Date: Tue, 28 Jul 2009 13:57:57 -0400
From: Dean Anderson <dean@av8.com>
X-X-Sender: dean@cirrus.av8.net
To: "Wes Beebee (wbeebee)" <wbeebee@cisco.com>
In-Reply-To: <BB56240F3A190F469C52A57138047A0302C80D14@xmb-rtp-211.amer.cisco.com>
Message-ID: <Pine.LNX.4.44.0907281324370.13466-100000@cirrus.av8.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Cc: ietf-honest@lists.iadl.org, ietf@ietf.org, rms@gnu.org, Nicolas Williams <Nicolas.Williams@sun.com>, tls@ietf.org
Subject: Re: [TLS] Last Call: draft-ietf-tls-extractor (Keying MaterialExporters for Transport Layer Security (TLS)) to Proposed Standard
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2009 17:58:04 -0000

On Mon, 27 Jul 2009, Wes Beebee (wbeebee) wrote:

> Many patents are filed for defensive reasons.  Ie. If I don't patent it,
> then someone else will, and then I won't be able to use the idea I came
> up with.  The other defensive reason is so that if company A tries to
> sue company B for infringing patents, then company B can threaten to sue
> company A back - and the end result of the mutual assured destruction is
> that no one ends up suing anyone else.  

What you say is true, and is basically why the LPF accepts mutually
defensive patents.  http://www.progfree.org/Patents/mutual-def.html Of
course, they key is the nonagression policy and the universal free
license.

But the above just recognizes the realities imposed by the laws of an
unfair patent system. Patents (mutally defensive) are better than no
patents whatsoever. While publication and prior are helpful, the law
gives (unfairly we argue) benefits to patent holders including mutually
defensive patent holders.

So, there is still a reason to change the law on patents. These mutually
defensive patents are still expensive, and must still be defended to
some extent: e.g. against an agressive patent holder of an overlapping
patent who seeks to enjoin against the mut-def patent application.

I think there are two reasons for the IETF to consider patented
technology:

First, I think the IETF is made up of a majority of people who are
anti-patent in their views. But industry players who are agressively
pro-patent (as we have seen) also participate, and it seems (strangely)
control the leadership.  Despite the actions of the IESG silencing
critics, the IETF does not actually have a right to deny participation
to those players who merely disagree with the majority. To do so is a
violation of the Hobbs Act on democratic participation, and a violation
of anti-trust laws.  Morally, it would just be wrong to deny
participation to the opposition.  We have to respect the rights of the
opposition to participate, even when they don't respect our right to
participate.

Second, Truly novel, superior patents are very, very rare. The example I
hold up is the (hypothetical) patenting of the fast fourier transform
(FFT). The FFT is so superior and so novel in signal processing, that if
it were patented people doing signal processing would have no choice but
to standardize it and pay whatever fees were demanded.  If something
like that happened, it would be a very, very sad day. But that
possibility it is really just another reason to change the law on
patents.  But fortunately, I haven't seen that level of novelty and
superiority in any patented technology so far proposed to the IETF.  
Most patent technology I have seen so far proposed to the IETF is either
not very novel and/or not very superior and, most significant to a
standarization decision, is easily replaced by non-patented technology.

In the case the IETF approves a patented standard, I would hope that the
IETF only does so for a mutually defensive patent, or only in the case
were something is so novel and so superior as to be like the FFT to
signals and systems analysis. Anything less seems like a very poor
choice.

So the IETF /can/ make a decision to approve a patented technology. But
of course, mere procedural ability to approve a patented technology is
no reason to approve a non-free patented technology that is easily
replaced by non-patented technology. We should make intelligent and
informed decisions.


		
		--Dean

-- 
Av8 Internet   Prepared to pay a premium for better service?
www.av8.net         faster, more reliable, better service
617 344 9000