Feeds

Microsoft promises no patent prosecution of open-source .NET

Ubuntu joins Debian Mono denials

Top three mobile application threats

Microsoft is promising not to pursue patent claims against Linux and open-source software using the open-source implementation of .NET, Project Mono.

The company has said that third party implementations of its C# and the Common Language Infrastructure (CLI) - a language runtime - will be made available under its Community Promise. The promise will cover ECMA specifications 334 and 335 - C# and CLI respectively.

That means developers, users and distributors of Mono, which implements the C# and CLI specs, should be protected against possible action by Microsoft.

There was no word on why Microsoft has made the promise, but it's a sudden move likely designed to limit damage between Microsoft and the community over Mono.

GNU father and open-source evangelist Richard Stallman last week stuck his finger in the sensitive part of Microsoft's relationship with open source when he claimed Debian's inclusion of Mono in the "default" installation posed a dangerous risk to the open-source movement. Stallman warned Microsoft might evoke software patents used in C# through legal action to drive independent implementations of the language underground.

Such was the impact that Debian denied Stallman's claims and the cuddly Ubuntu - which is based on Debian - issued a calming statement.

The Ubuntu Technical Board issued a position statement that said it saw no reason to exclude Mono or applications based on it from the default Ubuntu installation or the Ubuntu archive.

Technical Board representative Scott James Remnant has said: "It is common practice in the software industry to register patents as protection against litigation, rather than as an intent to litigate. Thus mere existence of a patent, without a claim of infringement, is not sufficient reason to warrant exclusion from the Ubuntu Project."

Meanwhile, Microsoft stressed that third parties are free to implement technologies under the Community Promise without signing a license.

"The Community Promise is an excellent vehicle and, in this situation, ensures the best balance of interoperability and flexibility for developers," corporate vice president for the .Net developer platform Scott Guthrie has said.

The Community Promise covers developers, distributors, and users that make use, sell, import, or distribute technologies that use Microsoft owned or claimed patents "under any type of development or distribution model, including open-source licensing models such as the LGPL or GPL." Until now, Community Promise has only covered Microsoft's HealthVault Service specification, UI Automation 1.0, XPS specification 1.0, and the VBA Language specification.

The important part in all of these statements are the qualifications. Notably, neither Debian or Ubuntu has denied the existence of patents or the presence of Mono as a default piece of software in their Linuxes. Rather, they have sought to play down the threat Mono posed.

Increasingly, it's looking like Microsoft's promise and Stallman's apparently random outburst are due to some industry politicking based on the sudden realization by somebody that Mono users were not covered under Microsoft's controversial patent indemnification covenant with Novell from November 2006.

Mono is owned and funded by Novell, and the agreement with Microsoft promised to protect Novell SuSE Linux users and developers against action from Microsoft over any patent claims against Linux. In a separate deal, Microsoft has also covered users of Novell's Moonlight, the open-source implementation of Microsoft's Silverlight browser-based media player.

Mono is important to Microsoft. The project's very existence helps show the world that Microsoft is willing to not just permit but also to work with open-source on independent implementations of .NET. Also, the company sees implementations of .NET and runtimes like Silverlight as helping seed the market for its own closed versions of .NET and runtimes. ®

Top three mobile application threats

More from The Register

next story
OpenBSD founder wants to bin buggy OpenSSL library, launches fork
One Heartbleed vuln was too many for Theo de Raadt
Got Windows 8.1 Update yet? Get ready for YET ANOTHER ONE – rumor
Leaker claims big release due this fall as Microsoft herds us into the CLOUD
This time it's 'Personal': new Office 365 sub covers just two devices
Redmond also brings Office into Google's back yard
Ubuntu 14.04 LTS: Great changes, but sssh don't mention the...
Why HELLO Amazon! You weren't here last time
Patch iOS, OS X now: PDFs, JPEGs, URLs, web pages can pwn your kit
Plus: iThings and desktops at risk of NEW SSL attack flaw
Next Windows obsolescence panic is 450 days from … NOW!
The clock is ticking louder for Windows Server 2003 R2 users
Batten down the hatches, Ubuntu 14.04 LTS due in TWO DAYS
Admins dab straining server brows in advance of Trusty Tahr's long-term support landing
Red Hat to ship RHEL 7 release candidate with a taste of container tech
Grab 'near-final' version of next Enterprise Linux next week
Apple inaugurates free OS X beta program for world+dog
Prerelease software now open to anyone, not just developers – as long as you keep quiet
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.