Re: [IPsec] [Cfrg] Beginning discussion on secure password-only authentication for IKEv2

Tue, 02 Mar 2010 10:32:36 -0800 

Whether or not the EKE patent is broad enough, if you search the IPR repository 
for RFC 2945 (SRP), you will find out that more than one company is happy to 
post an IPR warning related to SRP. This of course does not prove anything - 
they're just saying that their patents "might apply". BTW, I also believe the 
EKE patent expires 10/2011.

Thanks,
        Yaron

> -----Original Message-----
> From: ipsec-boun...@ietf.org [mailto:ipsec-boun...@ietf.org] On Behalf
> Of Steven M. Bellovin
> Sent: Tuesday, March 02, 2010 20:20
> To: Blumenthal, Uri - 0662 - MITLL
> Cc: 'ipsec@ietf.org'; 'hannes.tschofe...@gmx.net'; 'c...@irtf.org';
> 'paul.hoff...@vpnc.org'
> Subject: Re: [IPsec] [Cfrg] Beginning discussion on secure password-
> only authentication for IKEv2
> 
> On Tue, 2 Mar 2010 13:03:40 -0500
> "Blumenthal, Uri - 0662 - MITLL" <u...@ll.mit.edu> wrote:
> 
> > I see value in adding a simpler-than-EAP method, and support this
> > effort. But overall it's an extremely difficult task because of IPR.
> >
> > I personally would hate to see a patent-encumbered solution - and
> > that would disqualify EKE and PAK outright (both held by
> > Alcatel-Lucent, AFAIK). SRP would be the only acceptable (from IPR
> > point of view) candidate that I'm aware of.
> 
> Note that the EKE patent expires in October 2011.  (At least I think it
> does; it was filed in October 1991.)  Depending on when you expect
> implementations to appear-- and given how long it takes to produce
> standards-track documents in the IETF -- it might not be a problem.
> 
> > I've been told that EKE
> > patent is written so broadly that it could cover SRP as well -
> > somebody more knowledgeable should comment on this.
> >
> I've been told that, too, but since I haven't worked for the patent
> assignee for almost 13 years, I've never felt any need to (go through
> the non-trivial amount of work necessary to) come to my own
> conclusions.
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec
> 
> Scanned by Check Point Total Security Gateway.
_______________________________________________
IPsec mailing list
IPsec@ietf.org
https://www.ietf.org/mailman/listinfo/ipsec

Reply via email to