[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IKE and Certicom "IP Rights"

To: Russ Housley <housley@vigilsec.com>, saag@mit.edu
Subject: IKE and Certicom "IP Rights"
From: Michael Richardson <mcr@sandelman.ottawa.on.ca>
Date: Mon, 03 Nov 2003 19:23:40 -0500
Cc: ipsec@lists.tislabs.com, iesg@ietf.org, design@lists.freeswan.org
In-reply-to: Your message of "Fri, 31 Oct 2003 15:29:27 EST." <5.2.0.9.2.20031031152519.0449f590@mail.binhost.com>
Sender: owner-ipsec@lists.tislabs.com

-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Russ" == Russ Housley <housley@vigilsec.com> writes:
    Russ> Dear IPsec Working Group:

    Russ> I just got this note, which is a follow-up to a query that I sent to 
    Russ> Certicom in July 2003.

  Thank you for posting this. But, this part makes no sense.

    Certicom> and other IETF standards using MODP Groups.  The applicable
    Certicom> patents include, but are not limited to, US Patents #5,933,504,
    Certicom> #6,563,928, #6,078,667, #6,178,507, #6,195,433, US Patent
    Certicom> Application Publications #2001/0014153, #2002/0090085, and PCT
    Certicom> Application #WO 00/01109, and corresponding foreign applications.

    Certicom> limited field of use of MODP public key cryptography
    Certicom> implemented using the well known Groups 1 and 2 as defined in
    Certicom> RFC 2409.  Certicom will send the IETF terms of the royalty
    Certicom> free license and will post this our web site shortly. 

  This is a silly offer. Certicom IPR people don't understand their own
patents and do not understand IKE, or cryptography at all it seems to
me. That he goes on to suggest that we use ECC instead, for which they have
even further patents is even more suspect. 

  I didn't look up all the patents, but the first one, 5,933,504, is about
how to generate and check the numbers. We discussed this last July in Vienna.
  This patent ought to apply to all IETF systems that use DH.

  No IKE implementations use the described mechanisms. IKE doesn't do that.
It does DH. To make DH interoperate we have to agree on a common base, "g",
which should have certain properties. Once the "g" has been generated and
checked, we are done. 
  So, from the IETF's point of view the only person/group that needs to
license this patent is the document editor! 
  
  The only other people that would need to license this would be who didn't
trust the document editor and/or the IETF. 

  Certicom "offer"s us MODP groups 1 and 2. Wow. Will they offer to license
PI to me next? they are NUMBERS. This is nonsense from them. 

] Collecting stories about my dad: http://www.sandelman.ca/cjr/ |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another Debian/notebook using, kernel hacking, security guy");  [


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBP6bxioqHRg3pndX9AQHJRgQAksDiCqLRsPVM4mOMB58+5p1pvUnFbs71
Oxst6jRLoyLApjbydWBHOGLzpiLOKPgTCpn2+rTs+UMBcNIARWhcqIa/wIcBoKNk
6bmpUAyfBMfJ5eFm58cK7X4vUzmZJUvoZqNsFaYhZYOjF6yLlMHKGTHi0DMPtQ/T
NK7gFcrPpm4=
=ZHqT
-----END PGP SIGNATURE-----

Prev by Date: IKEv2 Mobility and Multihoming BOF Tue, Nov 11, 1700-1800
Next by Date: Re: revised processing model, take II
Previous by thread: IKEv2 Mobility and Multihoming BOF Tue, Nov 11, 1700-1800
Next by thread: Re: revised processing model, take II
Index(es):
- Date
- Thread