Re: [dss] Patent application notification

["jmessing" <jmessing@law-on-line.com>]

Inasmuch as the patent seems to cover the XMKS type of signature architecture, which underlies many of the submitted use cases of the DSS TC, then unless there is a commitment from the patent holder(s) to provide a reasonable non-discriminatory license to implement the DSS standard as adopted under the TC Charter, I am concerned that the OASIS Board will not be able to approve a DSS standard in accordance with the current OASIS IPR policy.

If we are unable to obtain an approval of a DSS standard for this reason, then what is the point of continued deliberations by the TC of the affected use cases?

This assumes aside issues of XKMS as prior art, proper and timely disclosure(s), and the general enforceability of the US patent in the courts.

---------- Original Message ----------------------------------
From: Juan Carlos Cruellas <cruellas@ac.upc.es>
Date:  Fri, 04 Jul 2003 14:09:48 +0200

>Dear Rich,
>
>I have accessed to the website you mention and I have seen your
>name among the inventors.
>Could I ask you to provide me the details of the people we
>should contact to to request them the provision of  a
>statement of the  licensing policies, as well as further
>disclosure of other jurisdictions that they have filed in?
>
>
>Regards
>
>Juan Carlos 
>
>
>At 16:40 03/07/2003 -0400, you wrote:
>>At a former employer I worked on a patent application which has 
>>(finally!) been published.  I believe it's appropriate to mention it here.
>>
>>http://appft1.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&d=PG01&p
>=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.html&r=1&f=G&l=50&s1=%2220030093678%22.PGNR
>.&OS=DN/20030093678&RS=DN/20030093678
>>
>>A digital signature system is provided on a server for use by remote 
>>clients, such as by using a browser. The server generates and maintains 
>>all of the users' keys used for producing a digital signature. A user 
>>sends a data object to the server, and the server generates a digital 
>>signature for the data object using the private key stored at the 
>>server. The server then sends the digital signature to the client. A 
>>client can, at a later time, send the signature back to the server for 
>>verification.
>>
>>Filed April 23, 2001
>>
>>
>>-- 
>>Rich Salz, Chief Security Architect
>>DataPower Technology                           http://www.datapower.com
>>XS40 XML Security Gateway   http://www.datapower.com/products/xs40.html
>>XML Security Overview  http://www.datapower.com/xmldev/xmlsecurity.html
>>
>>
>>You may leave a Technical Committee at any time by visiting
>http://www.oasis-open.org/apps/org/workgroup/dss/members/leave_workgroup.php
>>
>
>You may leave a Technical Committee at any time by visiting http://www.oasis-open.org/apps/org/workgroup/dss/members/leave_workgroup.php
>
>