Alan Johnston Justin Uberti John Yoakum Kundan Singh November 4, 2015

Slides:

Advertisements

Similar presentations

Oct, 26 th, 2010 OGF 29, FVGA-WG: Firewall Virtualization for Grid Applications Firewall Virtualization for Grid Applications - Status update

Advertisements

EAP Channel Bindings Charles Clancy Katrin Hoeper IETF 76 Hiroshima, Japan November 08-13, 2009.

RFC 3489bis Jonathan Rosenberg Cisco Systems. Technical Changes Needed Allow STUN over TCP –Driver: draft-ietf-sip-outbound Allow response to omit CHANGED-

Address Settlement by Peer to Peer (ASP) Jonathan Rosenberg Cullen Jennings Eric Rescorla.

1 © 2004 Cisco Systems, Inc. All rights reserved. Making NATs work for Online Gaming and VoIP Dr. Cullen Jennings

Identifying intra-realm calls with explicit addressing realm identifier attribute François AUDET SIPPING WG Meeting IETF-57.

RTSP NAT Traversal Update Magnus Westlund (Ericsson) Thomas Zeng (PVNS, an Alcatel company) IETF-60 MMUSIC WG draft-ietf-mmusic-rtsp-nat-03.txt.

SIP Action Referral Rifaat Shekh-Yusef Cullen Jennings Alan Johnston Francois Audet 1 IETF 80, SPLICES WG, Prague March 29, 2011.

SIP Authorization Framework Use Cases Rifaat Shekh-Yusef, Jon Peterson IETF 91, SIPCore WG Honolulu, Hawaii, USA November 13,

1 © NOKIA Presentation_Name.PPT / DD-MM-YYYY / Initials Emergency calls related work done in IETF Gabor Bajko May 22, 2006.

CSCI 323 – Web Development Chapter 1 - Setting the Scene We’re going to move through the first few chapters pretty quick since they are a review for most.

Draft-gu-ppsp-protocol-00 PPSP Session IETF 77, Anaheim March 22, 2010.

P2PSIP Charter Proposal Many people helped write this charter…

SIP OAuth Rifaat Shekh-Yusef IETF 90, SIPCore WG, Toronto, Canada July 21,

IETF 60 – San Diegodraft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Aravind.

PPSP NAT traversal Lichun Li, Jun Wang, Wei Chen {li.lichun1, draft-li-ppsp-nat-traversal-02.

SIPPING IETF 57 Jonathan Rosenberg dynamicsoft.

Peering Considerations for Directory Assistance and Operator Services - John Haluska Telcordia SPEERMINT, IETF 68 Prague, Czech Republic 20 March 2007.

Slide title In CAPITALS 50 pt Slide subtitle 32 pt RTSP 2.0 TLS handling Magnus Westerlund draft-ietf-mmusic-rfc2326bis-12.

Security, NATs and Firewalls Ingate Systems. Basics of SIP Security.

WG Document Status 192nd IETF TEAS Working Group.

Patrik Fältström. ITU Tutorial Workshop on ENUM. Feb 8, 2002, Geneva Explanation of ENUM (RFC 2916) Patrik Fältström Area Director, Applications Area,

RTCWEB Considerations for NATs, Firewalls and HTTP proxies draft-hutton-rtcweb-nat-firewall- considerations A. Hutton, T. Stach, J. Uberti.

Interactive Connectivity Establishment : ICE

March 22th, 2001 MMUSIC WG meeting 50th IETF MMUSIC WG meeting The fid attribute draft-ietf-mmusic-fid-00.txt

Magnus Westerlund 1 The RTSP Core specification draft-ietf-mmusic-rfc2326bis-06.txt Magnus Westerlund Aravind Narasimhan Rob Lanphier Anup Rao Henning.

NATFW NSLP Status draft-ietf-nsis-nslp-natfw-12.txt M. Stiemerling, H. Tschofenig, C. Aoun, and E. Davies NSIS Working Group,

Topics Ahead …. What would the WG produce? Charter description of what we do Things we don’t do.

IETF68 DIME WG Open Issues for RFC3588bis Victor Fajardo (draft-ietf-dime-rfc3588bis-02.txt)

November 8, 2005"Field of Use" RFC Modification1 “Field of Use” RFC Modification Permissions David L. Black EMC Corporation November 8, 2005.

Session Traversal Utilities for NAT (STUN) IETF-92 Dallas, March 26, 2015 draft-ietf-tram-stunbis Marc Petit-Huguenin, Gonzalo Salgueiro.

July 28, 2008BLISS WG IETF-721 The Multiple Appearance Feature using the Session Initiation Protocol (SIP) draft-johnston-bliss-mla-req-02 Alan Johnston.

IETF 70 – SIMPLE WG SIMPLE Problem Statement draft-ietf-simple-interdomain-scaling-analysis-03 Avshalom Houri – IBM Tim Rang, Sriram Parameswar - Microsoft.

Indication of Terminated Dialog draft-holmberg-sipping txt Christer Holmberg NomadicLab Ericsson.

Discussion On Routing Modes IETF72 P2PSIP WG draft-jiang-p2psip-sep-01 Jiang XingFeng Carlos Macian Victor Pascual.

IETF-62 draft-johnston-enum-conf-service-00 1 IANA Registration for ENUMservices ‘conf-web’ and ‘conf-uri’ Alan Johnston.

ID-LOC Proposal Philip Matthews Eric Cooper Alan Johnston Avaya With contributions from Cullen Jennings, David Bryan, and Bruce Lowekamp.

Session-Independent Policies draft-ietf-sipping-session-indep-policy-00 Volker Hilt Gonzalo Camarillo

Server2nve Kompella, Rekhter, Morin, Black IETF 85, NVO3 WG.

Lifecycle Metadata for Digital Objects November 27, 2006 Rights Management Metadata.

SIP wg Items Jonathan Rosenberg dynamicsoft Caller Preferences: Changes Discussion of Redirects –Previous draft only proxy –Nothing different for redirect.

Telephone Related Queries (TeRQ)

Session-Independent Policies draft-ietf-sipping-session-indep-policy-02 Volker Hilt Jonathan Rosenberg Gonzalo.

Informing AAA about what lower layer protocol is carrying EAP

Hypertext Transfer Protocol

Session Recording (SIPREC) Protocol (draft-ietf-siprec-protocol-11)

SIP Configuration Issues: IETF 57, SIPPING

ALTO Protocol draft-ietf-alto-protocol-14

draft-ietf-simple-message-sessions-00 Ben Campbell

Topics Ahead …. What would the WG produce?

draft-ietf-behave-nat-behavior-discovery-01

AAA and AAAS URI Miguel A. Garcia draft-garcia-dime-aaa-uri-00.txt

Transporting User to User Call Control Information in SIP for ISDN Interworking draft-johnston-sipping-cc-uui-07 Alan Johnston

Lionel Morand DHCP options for PAA Lionel Morand

Examining Session Policy Topologies

Challenge-Response New Authentication Scheme

draft-ietf-geopriv-lbyr-requirements-02 status update

Firewall Exercise.

IETF Working Group CSCI 344 Spring 2016 Report <Your name>

TCP for DNS security considerations

Application layer Lecture 7.

HTTP Hypertext Transfer Protocol

IETF68 Mini-BOF MIB-Doctor-Sponsored MIB Document Templates

ECN Experimentation draft-black-ecn-experimentation

Multi-server Namespace in NFSv4.x Previous and Pending Updates

What WebRTC Does NOT Do:

HTTP Hypertext Transfer Protocol

TRILL Adjacency Document Status

An Architecture for Media Recording using the Session Initiation Protocol draft-ietf-siprec-architecture Andy Hutton

TRILL Adjacency Document Status

Presentation transcript:

An Origin Attribute for the STUN Protocol draft-ietf-tram-stun-origin-06 Alan Johnston <alan.b.johnston@gmail.com> Justin Uberti <justin@uberti.name> John Yoakum <yoakum@avaya.com> Kundan Singh <kundan10@gmail.com> November 4, 2015 IETF-94 TRAM WG

Recent Changes List discussion after IETF-93 Version -06 changes Only share ORIGIN when STUN/TURN URI domain matches ORIGIN domain (Details on next slide) No new meta-data is generated Still covers many use cases (details on slide after next) Removed text on sending empty ORIGIN attribute - just don’t send Removed different handling based on usage (web, SIP, XMPP, etc) - just handle all the same Should clear DISCUSSes November 4, 2015 IETF-94 TRAM WG

New Origin Matching Rules An ORIGIN attribute MUST NOT be included in a STUN or TURN request if the fully qualified domain name (FQDN) of the Origin does not match the FQDN of the STUN or TURN URI which was used to reach the STUN or TURN server. The FQDN comparison does not include ports or URI schemes. Examples: A web origin of http://foo.example.com:8080 matches a TURN URI of turn:foo.example.com A SIP origin of sips:bar.example.org:5061 matches a STUN URI of stun:bar.example.org:999 November 4, 2015 IETF-94 TRAM WG

Use Cases Supported Single tenanted STUN/TURN server Allows operator to only respond to STUN/TURN requests from own domain Multi tenanted STUN/TURN server Allows for realm selection for challenge Allows for logging/policy of usage based on domain Potentially firewall traversal e.g. draft-jennings-behave-rtcweb-firewall November 4, 2015 IETF-94 TRAM WG

Way Forward Is WG OK with these changes? If so, authors will work to get DISCUSSes cleared and this work finished! November 4, 2015 IETF-94 TRAM WG