03.02.11

Gemini version available ♊︎

HP Acquires Firm Hostile Towards Free Software, a Microsoft Ally

Posted in Free/Libre Software, FUD, HP, Microsoft, Petitions, Security at 10:17 am by Dr. Roy Schestowitz

Summary: New article about software patents reveals that HP, under new leadership, has quietly bought a group of Microsoft allies (Fortify)

Following Hurd’s departure [1, 2, 3, 4] a former Microsoft ally was made the CEO of HP [1, 2, 3, 4] and this is important because of HP’s leading position in the desktops/servers market, not to mention all of its patents. “Every time a software patent is registered, an angel is bludgeoned to death with a shoe,” wrote “MrAlanCooper” to a former Microsoft employee. Yesterday we noticed this article about software patents in security, in which it’s mentioned that Fortify has just been acquired by HP. It’s important because Fortify too is a Microsoft ally, as we noted in [1, 2, 3, 4, 5]. The article says:

Can you patent the obvious? Apparently when it comes to software security, maybe you can. Gary McGraw explains how another party may get a patent on a technique he had a hand in inventing.

The notion of software patents is extremely controversial. The basic idea is simple and mirrors “regular” patents. An inventor invents something and files a number of claims about the invention. The Patent Office reviews the filing and determines whether to grant a patent for the invention. Holding a patent guarantees the inventor some rights to enjoy the fruits of the invention for a fixed period of time. Not so bad if you invent the next great inside-the-peel Tomato twaddler, but a bit harder to understand in the software space.

Can you patent the obvious? Apparently when it comes to software security, maybe you can.

[...]

On to patent land. Apparently the security testing firm Cenzic believes that they deserve a patent for software fault injection. In February 2007 (a decade after our book was published) Cenzic was awarded patent number 7185232 for “fault injection methods and apparatus.” The basic claims in the patent involve injecting some faulty input into a web program (thing one) and watching for error responses (thing two). Very nice. Or maybe not. A grass roots effort to collect prior art and dispute the patent is being spearheaded on the net byEnrique A. Sanchez Montellano.

As an inventor of security technology, I am not completely opposed to the idea of software patents. In fact, we hold eight patents in various aspects of software security at Cigital (some of which are likely to be infringed upon). We like the idea of licensing our ideas and our prototypes to others. In fact, that’s exactly what happened with Fortify which was recently acquired by HP. We licensed our code scanning ideas and prototypes to Kleiner-Perkins who went on to found Fortify, build a real commercial product, and sell the heck out of it. So the notion of protecting our ideas with patents is not foreign to us.

A lot could be said about the article’s attitude w.r.t. software patents, but the news that we missed about Fortify may be important in the future. Fortify attacks Free software quite routinely, so it’s unclear why HP would want this culture to become ‘in-house’. Incidentally, considering that Hurd was fired after Microsoft had pointed out that his work on a homebrew Linux-based operating system was a major threat (c/f SEC filing), one ought to watch carefully what Apotheker does at HP. Microsoft also named Intel’s work on MeeGo as a major threat (alongside HP) and we all know what Microsoft did to Nokia [1, 2, 3, 4], harming MeeGo a great deal using entryism (a manager from BT privately told us by mail that it was probably illegal, he called it “100% corrupt”). Yesterday we wrote about the contractual obligations of Micromoles. Watch out, HP.

Microsoft way

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

2 Comments

  1. gnufreex said,

    March 3, 2011 at 5:44 am

    Gravatar

    FortiFUD buy is probably advocated by Microsoft drone that HP hired to lead their software division http://online.wsj.com/article/SB10001424052748703961104575226610773111220.html

    Dr. Roy Schestowitz Reply:
    March 3rd, 2011 at 7:30 am

    Yes, him too.

DecorWhat Else is New

  1. IRC Proceedings: Tuesday, May 30, 2023

    IRC logs for Tuesday, May 30, 2023

  2. Gemini Protocol About to Turn 4 and It's Still Growing

    In the month of May we had zero downtime (no updates to the system or outages in the network), which means Lupa did not detect any errors such as timeouts and we’re on top of the list (the page was fixed a day or so after we wrote about it); Gemini continues to grow (chart by Botond) as we’re approaching the 4th anniversary of the protocol

  3. Links 31/05/2023: Librem Server v2, curl 8.1.2, and Kali Linux 2023.2 Release

    Links for the day

  4. Gemini Links 31/05/2023: Bayes Filter and Programming Wordle

    Links for the day

  5. [Meme] Makes No Sense for EPO (Now Connected to the EU) and Staff Pensions to be Tied to the UK After Brexit

    It seems like EPO staff is starting to have doubts about the safety of EPO pensions after Benoît Battistelli sent money to reckless gambling (EPOTIF) — a plot that’s 100% supported by António Campinos and his enablers in the Council, not to mention the European Union

  6. Working Conditions at EPO Deteriorate and Staff Inquires About Pension Rights

    Work is becoming a lot worse (not even compliant with the law!) and promises are constantly being broken, so staff is starting to chase management for answers and assurances pertaining to finances

  7. Links 30/05/2023: Orc 0.4.34 and Another Rust Crisis

    Links for the day

  8. Links 30/05/2023: Nitrux 2.8.1 and HypoPG 1.4.0

    Links for the day

  9. Gemini Links 30/05/2023: Bubble Version 3.0

    Links for the day

  10. Links 30/05/2023: LibreOffice 7.6 in Review and More Digital Restrictions (DRM) From HP

    Links for the day

  11. Gemini Links 30/05/2023: Curl Still Missing the Point?

    Links for the day

  12. IRC Proceedings: Monday, May 29, 2023

    IRC logs for Monday, May 29, 2023

  13. MS (Mark Shuttleworth) as a Microsoft Salesperson

    Canonical isn’t working for GNU/Linux or for Ubuntu; it’s working for “business partners” (WSL was all along about promoting Windows)

  14. First Speaker in Event for GNU at 40 Called for Resignation/Removal of GNU's Founder

    It’s good that the FSF prepares an event to celebrate GNU’s 40th anniversary, but readers told us that the speakers list is unsavoury, especially the first one (a key participant in the relentless campaign of defamation against the person who started both GNU and the FSF; the "FSFE" isn't even permitted to use that name)

  15. When Jokes Became 'Rude' (or Disingenuously Misinterpreted by the 'Cancel Mob')

    A new and more detailed explanation of what the wordplay around "pleasure card" actually meant

  16. Site Updates and Plans Ahead

    A quick look at or a roundup of what we've been up to, what we plan to publish in the future, what topics we shall focus on very soon, and progress moving to Alpine Linux

  17. Links 29/05/2023: Snap and PipeWire Plans as Vendor Lock-in

    Links for the day

  18. Gemini Links 29/05/2023: GNU/Linux Pains and More

    Links for the day

  19. Links 29/05/2023: Election in Fedora, Unifont 15.0.04

    Links for the day

  20. Gemini Links 29/05/2023: Rosy Crow 1.1.1 and Smolver 1.2.1 Released

    Links for the day

  21. IRC Proceedings: Sunday, May 28, 2023

    IRC logs for Sunday, May 28, 2023

  22. Daniel Stenberg Knows Almost Nothing About Gemini and He's Likely Just Protecting His Turf (HTTP/S)

    The man behind Curl, Daniel Stenberg, criticises Gemini; but it's not clear if he even bothered trying it (except very briefly) or just read some inaccurate, one-sided blurbs about it

  23. Links 29/05/2023: Videos Catchup and Gemini FUD

    Links for the day

  24. Links 28/05/2023: Linux 6.4 RC4 and MX Linux 23 Beta

    Links for the day

  25. Gemini Links 28/05/2023: Itanium Day, GNUnet DHT, and More

    Links for the day

  26. Links 28/05/2023: eGates System Collapses, More High TCO Stories (Microsoft Windows)

    Links for the day

  27. IRC Proceedings: Saturday, May 27, 2023

    IRC logs for Saturday, May 27, 2023

  28. No More Twitter, Mastodon, and Diaspora for Tux Machines (Goodbye to Social Control Media)

    People would benefit from mass abandonment of such pseudo-social pseudo-media.

  29. Links 28/05/2023: New Wine and More

    Links for the day

  30. Links 27/05/2023: Plans Made for GNU's 40th Anniversary

    Links for the day

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts