SORT BY:

LIST ORDER
THREAD
AUTHOR
SUBJECT


SEARCH

IPS HOME


    [Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

    RE: iSCSI: SRP vs DH-CHAP



    Clarification --
    
    The form of SRP being discussed in this group is Secure Remote Password,
    as defined in the IETF in RFC 2945.
    
    There is another protocol using the acronym SRP, SCSI RDMA Protocol,
    which is part of T10.
    
    These are two very different protocols, and should not be confused.
    
    I am unclear about Andre's first statement -- 'If 'this' is fully
    adopted into T10 then it plays by NCITS rules"
    If he is referring to T10 SRP, the statement does not apply here, since
    we are not discussing SCSI RDMA Protocol SRP.
    If he is referring to iSCSI itself, iSCSI is an IETF document, not a T10
    document, and will never be 'fully adopted into T10', so again, the
    statement does not apply.
    
    Thanks,
    
    Elizabeth
    
    -----Original Message-----
    From: owner-ips@ece.cmu.edu [mailto:owner-ips@ece.cmu.edu] On Behalf Of
    Andre Hedrick
    Sent: Thursday, April 11, 2002 2:37 AM
    To: Theodore Tso
    Cc: David Jablon; Bill Studenmund; ips@ece.cmu.edu
    Subject: Re: iSCSI: SRP vs DH-CHAP
    
    
    Ted,
    
    If this is fully adopted into T10 then it plays by NCITS rules.
    Whom ever now owns or has controlling interest in Phoenix will have to
    accept the rules set.  Since it is a SCSI/SAS transport, and iirc both
    are
    under the guidelines of T10, so what if there is a royality fee.
    
    The choice becomes data integity and security v/s whatever ...
    
    Also for the most part iSCSI will be a commerial enterprise storage
    feature, thus one expects to pay for what they get.  Additionally until
    iSCSI has a means to do storage class independent access, few will move
    from the top margin FCAL to another packet storage stack.
    
    Cheers,
    
    Andre Hedrick
    LAD Storage Consulting Group
    
    On Thu, 4 Apr 2002, Theodore Tso wrote:
    
    > On Thu, Apr 04, 2002 at 04:12:57PM -0500, David Jablon wrote:
    > > 
    > > Bill, it is not clear to me whether you will or won't "need to
    > > license patents", although you may have a legitimate reason to be
    > > concerned about the unknowns.
    > 
    > David,
    > 
    > I will note that you could help deal with some of the unknowns if you
    > could convince your employers to either assert that they believe your
    > patent covers SRP, or is willing to make a statement that the patent
    > does not cover SRP.
    > 
    > The current wording:
    > 
    > 	This is to advise the IETF that Phoenix Technologies Ltd.
    > 	("Phoenix") has U.S. Patent Number 6,226,383 that may
    > 	relate to the IETF document RFC 2945 titled "The SRP
    > 	Authentication and Key Exchange System".
    > 
    > ...is certainly cause of considerible uncertainty.  In fact, some on
    > the IESG have called it a FUD letter.  (Personally, I believe we
    > should never attribute to malice what can be attributed to a weaselly
    > lawyer, but regardless, given such a letter, many people would assume
    > that it would be necessary to license patents in order to use SRP.)
    > 
    > If you'd like to do your part to get this technology (which you claim
    > is so wonderful) in wider use, perhaps you could do what you can to
    > clear up some of the unknowns?
    > 
    > 						- Ted
    > 
    
    
    


Home

Last updated: Thu Apr 11 15:18:20 2002
9607 messages in chronological order