- From: Anders Rundgren <anders.rundgren@telia.com>
- Date: Mon, 01 Apr 2013 09:50:47 +0200
- To: GALINDO Virginie <Virginie.GALINDO@gemalto.com>
- CC: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
On 2013-03-31 23:44, GALINDO Virginie wrote: > Anders, > I am here, but I am not representing GP but gemalto :) Well, Gemalto is one of the GP stake-holders. The following _might_ be of some interest. As you know I have been working with a web-based security object [*] provisioning and management system for quite some time. As I have been told, it probably violates a bunch of mainly US patents. That US patents represent a major inhibitor to progress is verified by the fact that Mozilla doesn't dare adding ECC support to Firefox. For security object management "Secure Messaging" is crucial but that seems pretty difficult taking on without "trespassing" on SCP10, mentioned in the GP IPR document. Although SKS' SM-scheme isn't a copy of SCP10, it sure exhibits some similarities. I have therefore decided to not bother anymore about the US vendors and rather try to build something together with the Chinese vendors who are not bound by US and EU patents. BTW, leaving out the US and EU markets doesn't seem to be such a big deal these days :-) Regards, Anders *] After a while it become obvious that the scheme isn't limited to keys, it can also be used for managing SE-applications. > Regards, > Virginie > > > -----Original Message----- > From: Anders Rundgren [mailto:anders.rundgren@telia.com] > Sent: samedi 30 mars 2013 07:19 > To: Ryan Sleevi > Cc: public-webcrypto-comments@w3.org > Subject: Re: GlobalPlatform Trusted User Interface spec > > On 2013-03-29 23:20, Ryan Sleevi wrote: >> Anders, >> >> It would be more helpful to post to the general link, rather than >> directly the PDF, so that members may also be aware of >> http://www.globalplatform.org/specificationsipdisclaimers.asp > > Ryan, > thanx for pointing this out! > > Hardware security solutions are indeed encumbered with IPR. I have personally been warned by some of the vendors that my own experiments in this field will be slaughtered due to possible IPR violations. > > OTOH, the GP folks may find it hard getting acceptance in a world that is increasingly depending on open source solutions. IMO they should convert their claims to "prior art" declarations like I have done for everything that could be "novel" in some way. Virginie, are you there? :-) > > Anders > >> >> On Fri, Mar 29, 2013 at 3:09 PM, Anders Rundgren >> <anders.rundgren@telia.com> wrote: >>> http://www.globalplatform.org/specifications/review/GPD_TEE_Trusted_U >>> ser_Interface_API_v0.99.pdf >>> >>> May be of interest to people designing platforms dealing with credentials. >>> >>> Anderd >>> >> >> > > > >
Received on Monday, 1 April 2013 07:51:27 UTC