Re: [TLS] Proto write-up for TLS exporter

[Eric Rescorla <ekr at networkresonance.com>]

At Tue, 12 May 2009 17:59:09 +0200,
Simon Josefsson wrote:
> 
> "Joseph Salowey (jsalowey)" <jsalowey at cisco.com> writes:
> 
> >           concerns here. Has an IPR disclosure related to this document 
> >           been filed? If so, please include a reference to the 
> >           disclosure and summarize the WG discussion and conclusion on 
> >           this issue. 
> >
> > The document shepherd has no concerns with the document.  There is an
> > IPR disclosure that lists this document:
> > https://datatracker.ietf.org/ipr/1004/.  The contents of this disclosure
> > where originally posted to the list on June 30, 2008
> > (http://www.ietf.org/mail-archive/web/tls/current/msg02770.html).
> 
> That post does not relate to the #1004 patent disclosure.  The post
> refers to the January 2006 license, which did not reference TLS
> exporter.  The #1004 patent disclosure refers to the October 2008
> license.
> 
> > The IETF IPR disclosure reference was recently posted to the TLS list
> > as well.  There has been little discussion on this in the working
> > group.
> 
> Possibly because it was posted yesterday.
> 
> > The general sentiment is that the IPR is applicable to cases where ECC
> > certificates are used.
> 
> Can you provide a reference for this?  Who has made that interpretation?

I don't know about consensus, but that's my interpretation. I made it
based on the PDF file linked from the #1004 disclosure which seems to
me to pretty clearly state that extractor (and pretty much every other
TLS document) apply when used with ECC:

IETF TLS: 
"The Transport Layer Security (TLS) Protocol  Version 1.1," RFC 4346 or "The Transport Layer 
Security (TLS) Protocol ­ Version 1.2," RFC 5246, or "Datagram Transport Layer Security (DTLS) ­ 
Version 1.2," draftietftlsrfc4347bis00.txt, or "Transport Layer Security (TLS) Extensions", 
RFC 4366, or  "Datagram Transport Layer Security (DTLS) ­ Version 1.0", RFC 4347, or   
"Datagram Transport Layer Security (DTLS) Extension to Establish Keys for Secure Realtime 
Transport Protocol (SRTP)", draftietfavtdtlssrtp05.txt or "Keying Material Extractors for 
Transport Layer Security (TLS)", draftietftlsextractor02.txt  when used with either: 
        
            A. "Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer 
                Security(TLS)" RFC 4492, May 2006; or, 
            B. "TLS Elliptic Curve Cipher Suites with SHA256/384 and AES Galois Counter 
                Mode," RFC 5289, or 
            C. "Suite B Cipher Suites for TLS," draftrescorlatlssuiteb07.txt; 

Do you have some reason to believe that extractors itself is encumbered absent
use of ECC?

-Ekr