-related uncertainty around elliptic curve cryptography, or ECC patents, is one of the main factors limiting its wide acceptance. For example, the OpenSSL team accepted an ECC patch only in 2005, despite the fact that it was submitted in 2002. According to Bruce Schneier as of May 31, 2007, "Certicom certainly can claim ownership of ECC. The algorithm was developed and patented by the company's founders, and the patents are well written and strong. I don't like it, but they can claim ownership." Additionally, NSA has licensed MQV and other ECC patents from Certicom in a US$25 million deal for NSA Suite B algorithms. However, according to RSA Laboratories, "in all of these cases, it is the implementation technique that is patented, not the prime or representation, and there are alternative, compatible implementation techniques that are not covered by the patents." Additionally, Daniel J. Bernstein has stated that he is "not aware of" patents that cover the Curve25519elliptic curve Diffie–Hellman algorithm or its implementation., published in February 2011, documents ECC techniques, some of which were published so long ago that even if they were patented any such patents for these previously published techniques would now be expired.
Known patents
Certicom holds a patent on efficient GF multiplication in normal basis representation; expired in 2016.
Certicom holds multiple patents which cover the MQV key agreement technique:
* expired in 2015
* expired in 2015
* expired in 2015
* expired in 2015
* expired in 2017
* / expired in 2016
Certicom holds on technique of validating the key exchange messages using ECC to prevent a man-in-the middle attack, which expired in 2016. Related,, also expired in 2016 and expired in 2018.
Certicom holds and regarding digital signatures on a smartcard; these expired in 2017 and 2016 respectively.
Certicom holds on calculating the x-coordinate of the double of a point in binary curves via a Montgomery ladder in projective coordinates. The priority date is Jan 29, 1997 and the filing dateOct 2, 2000. Claims disclosed in the original patent application have expired but some claims may still be enforceable until 2020.
According to the NSA, Certicom holds over 130 patents relating to elliptic curves and public key cryptography in general. It is difficult to create a complete list of patents which are related to ECC, but a good starting point is Standards for Efficient Cryptography Group – a group devoted exclusively to developing standards based on ECC. There is controversy over the validity of some of the patent claims.
On May 30, 2007, Certicom filed a lawsuit against Sony in United States District Court for the Eastern District of TexasMarshall office, claiming that Sony's use of ECC in Advanced Access Content System and Digital Transmission Content Protection violates Certicom's patents for that cryptographic method. In particular, Certicom alleged violation of and. The lawsuit was dismissed on May 27, 2009. The stipulation states, "Whereas Certicom and Sony have entered into a settlement agreement pursuant to which they have agreed to a dismissal without prejudice, these parties therefore jointly move to dismiss all claims and counterclaims asserted in this suit, without prejudice to the right to pursue any such claims and counterclaims in the future." As for the prior art, Sony claimed:
For '870 patent: Alfred J. Menezes, Minghua Qu and Scott A. Vanstone, IEEE P1363 Standard, Standard for RSA, Diffie–Hellman and Related Public-Key Cryptography, Part 6: Elliptic Curve Systems