[License-review] Submission for review of Accountable Resolver License

Tue Oct 22 15:56:28 UTC 2024

Victor, all,

After a very cursory read of the license, my attention was attracted by, obviously, 4.6. It is IMHO borderline. If it is read as a non-permission (nothing in this license and license grant permits you to breach into xyz rights of privacy and no terms can be construed as consent to use data in such respect) I think it keeps the grant separated from the rights and my tentative position is that it is respectful of OSD.

If it is a condition to the grant, I am afraid it would fall within the "ethical licenses" conundrum. I would therefore suggest to resolve the possible controversial interpretation with clearer wording in either direction.

I have some problems with the Cryptographic Autonomy License (which has some interesting and worthwhile feature, anyway, and overall seems well written), but nothing that could compromise approval. 

I reserve further comments.

Cheers

Carlo, in his personal capacity.

----- Messaggio originale -----
> Da: "Victor Grey via License-review" <license-review at lists.opensource.org>
> A: "license-review at lists.opensource.org" <license-review at lists.opensource.org>
> Cc: "Victor Grey" <victor at jlinc.com>
> Inviato: Lunedì, 21 ottobre 2024 19:39:52
> Oggetto: [License-review] Submission for review of Accountable Resolver License

> To the OSI community, this is a request for approval for a new special-purpose
> open source license, as attached. The license is intended for software that
> provides registration and resolution services for Decentralized Identifiers
> (DIDs - https://w3c.github.io/did-core/). Such software may be used as a
> standalone service or incorporated into any other software to provide DID
> resolution services for any purpose, conditioned on it not being used to
> violate the privacy rights of end users of the service.
> 
> It is based on the Cryptographic Autonomy License (CAL-1.0) and is identical to
> CAL-1.0 with the exceptions of section 1 and portions of section 4.
> 
> * We believe and affirm that the license complies with the Open Source
> Definition, including specifically that it meets OSD 3, 5, 6 and 9.
> 
> * The license is currently being used in a private beta of a Federated ID
> service offered by JLINC Labs, and is already planned to be incorporated in
> several other businesses, to become public this year or early next year.
> 
> * The license steward and submitter is Victor Grey, on behalf of the Portable
> Data Corporation DBA JLINC Labs, reachable at victor at jlinc.com.
> 
> * The license shall be known as the Accountable Resolver License version 1.0.
> 
> * There are no unique identifiers by other projects or proposed tags.
> 
> * We believe it fills a gap in necessary privacy requirements for these types of
> services that we have found in no other license.
> 
> * As stated above, it is based on CAL-1.0.
> 
> * It has not been through any other legal review by us.
> 
> Many thanks for your attention,
> Victor Grey
> 
> 
> _______________________________________________
> The opinions expressed in this email are those of the sender and not necessarily
> those of the Open Source Initiative. Communication from the Open Source
> Initiative will be sent from an opensource.org email address.
> 
> License-review mailing list
> License-review at lists.opensource.org
> http://lists.opensource.org/mailman/listinfo/license-review_lists.opensource.org