On 29/10/15 12:08, richard@orvidia.fr wrote:
> Hi Tomasz,
>
> I thought about that too before considering packaging it, but it looks like
> it's dual licensed, and patents are only here to protect the commercial
> part.
>
> According to https://github.com/NTRUOpenSourceProject/ntru-crypto :
Hi Richard,
to my knowledge, ntru-crypto is not the same thing as libntru and
this bug report is about libntru :).
> "Security Innovation, Inc., the owner of the NTRU public key cryptography
> system, made the intellectual property and a sample implementation available
> under the Gnu Public License (GPL) in 2013 with the goal of enabling more
> widespread adoption of this superior cryptographic technology. The system is
> also available for commercial use under the terms of the Security Innovation
> Commercial License."
This is stil *very*, *very* shady, if you ask me.
For example I went through their "FOSS License Exception" and I read:
"b. The Derivative Work does not include any work licensed under
the GPL other than the GPLed NTRU;"
Does it mean that you cannot combine other GPL software with NTRU?
>
> I'm not sure this allows us to package it in debian, but hopefully someone
> here knows better than me.
Not me in any case, I recommend contacting debian-legal@lists.debian.org.
>
> Regards,
>
Cheers!
Tomasz
Attachment:
signature.asc
Description: PGP signature