Fellow members of the IETF: I would like to add my voice to those who have expressed discontent in the proposed TLS Authorization Extensions. The use of a Patented standard (especially one that may have such patents legally enforced, as in the case of RedPhone) appears to me to be in violation of our mission statement (RFC 3935). Our mission statement dictates that "when the IETF takes ownership of a protocol or function, it accepts the responsibility for all aspects of the protocol.." Surely we cannot take ownership of a protocol which is both proprietary and actively owned by a corporation. Contrary to the opinions of some of my colleagues, even if RedPhone grants all users a royalty-free license to implement and use such a protocol, I assert that the IETF would never truly be able to take *ownership* of said standard as is required by our mission statement. The final say would always be the responsibility of RedPhone, the true owners of the standard, and the IETF will have effectively given the green light to standardize a protocol that it can hold no influence over. This standard should not be accepted, even for experimental use, while a patent is held (and control assertable) by an external corporation over the will of the IETF. Please consider this fact, and preserve the solvency of the IETF's mission statement by disallowing the standardization of proprietary protocols such as those defined in the Transport Layer Security (TLS) Authorization Extensions internet draft. Sincerely, Alexander Loret de Mola Lead Software Engineer, iScan Services _______________________________________________ Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf