[Fedora-legal-list] missing ec and ecparam commands in openssl package
David Woodhouse
dwmw2 at infradead.org
Mon Jul 9 09:52:24 UTC 2012
On Mon Jun 4, Tristan Santore wrote:
> this was answered 3 months ago.
> To reiterate I will post Tom's response.
>
> > Fedora is legally part of Red Hat, and Red Hat has certain legal
> > obligations it is required to adhere to, based on the fact that it is a
> > US Company.
> >
> > Elliptic Curve Cryptography is currently being reviewed. At this point
> > in time, it must not be included or enabled in Fedora.
Has there been any progress on that since then? This is also blocking
the inclusion of GnuTLS v3; we're currently shipping 2.12 which is a
year out of date and lacking some important features and fixes.
The GnuTLS maintainer has clarified¹ that he has *only* used parts of EC
which are documented in RFC6090 — a document which was produced
*specifically* to cover the unpatented parts of Elliptic Curve
cryptography, and which has no normative references dated later than
1994. It even eschews the definitions of MAY/SHOULD/MUST etc. from
RFC2119 and provides its own, because RFC2119 was published later than
1994 ☺
For GnuTLS at least, the approval should be fairly much a no-brainer.
--
dwmw2
¹ https://bugzilla.redhat.com/show_bug.cgi?id=726886#c26
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6171 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/legal/attachments/20120709/529e97a8/attachment.bin>
More information about the legal
mailing list