Re: CA certificates

To: Russ Allbery <rra@stanford.edu>
Cc: debian-legal@lists.debian.org
Subject: Re: CA certificates
From: Florian Weimer <fw@deneb.enyo.de>
Date: Thu, 06 May 2004 08:56:26 +0200
Message-id: <[🔎] 874qqu2gdh.fsf@deneb.enyo.de>
In-reply-to: <[🔎] 87n04n74co.fsf@windlord.stanford.edu> (Russ Allbery's message of "Tue, 04 May 2004 23:52:39 -0700")
References: <87r7u0yb6r.fsf@deneb.enyo.de> <20040504065718.GX7487@archimedes.ucr.edu> <[🔎] 87wu3rebkg.fsf_-_@deneb.enyo.de> <[🔎] 87n04n74co.fsf@windlord.stanford.edu>

* Russ Allbery:

> Florian Weimer <fw@deneb.enyo.de> writes:
>
>> I've digged a bit more, and VeriSign actually has a license governing
>> the *use* of their certificates (including the root and intermediate
>> certificates):
>
>>   <https://www.verisign.com/repository/rpa.html>
>
>> The license seems to violate DFSG §6.  It also fails the Desert Island
>> test.
>
> There's an interesting question.  Is a public key copyrightable?  In other
> words, does VeriSign have any legal grounds to restrict use of their
> public keys at all?

Does it matter?  Why should we ignore VeriSign's wishes?  They have
far more lawyers than we have. 8-)

-- 
Current mail filters: many dial-up/DSL/cable modem hosts, and the
following domains: atlas.cz, bigpond.com, di-ve.com, hotmail.com,
jumpy.it, libero.it, netscape.net, postino.it, simplesnet.pt,
tiscali.co.uk, tiscali.cz, tiscali.it, voila.fr, yahoo.com.

Reply to:

References:
- CA certificates (was: Re: Mass bug filing: Cryptographic protection against modification)
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: CA certificates
  - From: Russ Allbery <rra@stanford.edu>

Prev by Date: Re: CA certificates
Next by Date: Re: moosic package contains obfuscated code
Previous by thread: Re: CA certificates
Next by thread: Re: CA certificates
Index(es):
- Date
- Thread