draft-ietf-stir-oob-02 Out of Band

Slides:



Advertisements
Similar presentations
User Profile Framework draft-ietf-sipping-config-framework-00.txt Dan Petrie
Advertisements

EAP Channel Bindings Charles Clancy Katrin Hoeper IETF 76 Hiroshima, Japan November 08-13, 2009.
SIP issues with S/MIME and CMS Rohan Mahy SIP, SIPPING co-chair.
SIP and IMS Enabled Residential Gateway Sergio Romero Telefónica I+D Jan Önnegren Ericsson AB Alex De Smedt Thomson Telecom.
DISPATCH Call-Info purpose for TRS (draft-kyzivat-dispatch-trs-call-info-purpose-02) IETF 92, March 23, 2015 Author: Paul Kyzivat Presenting: Brian Rosen.
9,825,461,087,64 10,91 6,00 0,00 8,00 SIP Identity Usage in Enterprise Scenarios IETF #64 Vancouver, 11/2005 draft-fries-sipping-identity-enterprise-scenario-01.txt.
Emergency Calling Services (Calls for police, fire, ambulance, etc.) SIPPING WG IETF 58 Tom Taylor
Request History – Solution Mary Barnes SIP WG Meeting IETF-57 draft-ietf-sip-history-info-00.txt.
1 IPFIX Protocol Specifications IPFIX IETF-59 March 3, 2004 Benoit Claise Mark Fullmer Reinaldo Penno Paul Calato Stewart Bryant Ganesh Sadasivan.
MASS / DKIM BOF IETF – Paris 4 Août 2005 dkim.org  mipassoc.org/mass IETF – Paris 4 Août 2005 dkim.org  mipassoc.org/mass MIPA.
Dnssd requirements draft-ietf-dnssd-requirements-01 Kerry Lynn Stuart Cheshire Marc Blanchet Daniel Migault IETF 89, London, 3 March 2014.
Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.
All Rights Reserved © Alcatel-Lucent 2006, ##### 2G IMS CAVE Based Security Replay Protection Alec Brusilovsky, Zhibi Wang Alcatel-Lucent, July 24, 2007.
Peering: A Minimalist Approach Rohan Mahy IETF 66 — Speermint WG.
1 IETF 72 SIP WG meeting SIP Identity issues John Elwell et alia.
HTTP State Management Mechanisms with Multiple Addresses User Agents draft-vyncke-v6ops-happy-eyeballs- cookie-01 92nd IETF, Dallas, Mar 2015 V6OPS WG.
SIP Extensions for Network-Asserted Caller Identity and Privacy within Trusted Networks Flemming Andreasen W. Marshall, K. K. Ramakrishnan,
Implications of Trust Relationships for NSIS Signaling (draft-tschofenig-nsis-casp-midcom.txt) Authors: Hannes Tschofenig Henning Schulzrinne.
26/07/2011 IETF 81 CDNI WG - draft-xiaoyan-cdni-requestrouting-01 1 CDNI WG draft-xiaoyan-cdni-requestrouting-01 IETF81 - Quebec Xiaoyan He
November 10, 2010IETF 79 – Beijing, China A method for IP multicast performance monitoring draft-cociglio-mboned-multicast-pm-01 Alessandro Capello Luca.
HOTP IETF Draft David M’Raihi IETF Meeting - March 10, 2005.
March 22, 2010IETF 77 – Anaheim, USA1 A method for IP multicast performance monitoring draft-cociglio-mboned-multicast-pm-00 Alessandro Capello Luca Castaldelli.
MPLS-TP Next-Hop Ethernet Addressing draft-fbb-mpls-tp-ethernet-addressing-00 Dan Stewart Matthew
Jim McEachern Senior Technology Consultant ATIS July 8, 2015.
Timeline – Standards & Requirements
Authenticated Identity
draft-rescorla-fallback-01
Booting up on the Home Link
Timeline - ATIS Involvement
PANA Issues and Resolutions
Kumiko Ono End-to-middle Security in SIP draft-ietf-sipping-e2m-sec-reqs-04 draft-ono-sipping-end2middle-security-03 Kumiko Ono.
SIP Configuration Issues: IETF 57, SIPPING
Katrin Hoeper Channel Bindings Katrin Hoeper
RELO: Retrieving End System Location Information draft-schulzrinne-geopriv-relo-03 Henning Schulzrinne March 2007 IETF68 - GEOPRIV.
Transporting User to User Call Control Information in SIP for ISDN Interworking draft-johnston-sipping-cc-uui-07 Alan Johnston
IP Router-Alert Considerations and usage
Improving Security of Real-time Communications
ATIS Cybersecurity DOCUMENT #: GSC13-GTSC6-12 FOR: Presentation
TURN Server Auto Discovery draft-patil-tram-turn-serv-disc-01
Timeline - ATIS Involvement
ND-Shield: Protecting against Neighbor Discovery Attacks
Scaling up DNS-based service discovery
Proposed ATIS Standard for Signing of SIP RPH
Open Forum th November 2016.
Verstat Related Best Practices
Analysis of Use of Separate Identity Header for SIP RPH Signing
RFC PASSporT Construction 6.2 Verifier Behavior
IP-NNI Task Force – Phase 2
draft-ipdvb-sec-01.txt ULE Security Requirements
RFC PASSporT Construction 6.2 Verifier Behavior
RFC PASSporT Construction 6.2 Verifier Behavior
Doug Bellows – Inteliquent 10/4/2018
IETF 101 (London) STIR WG Mar2018
STIR WG IETF-100 PASSPorT Extension for Resource-Priority Authorization (draft-ietf-stir-rph-01) November, 2017 Ray P. Singh, Martin Dolly, Subir Das,
RELO: Retrieving End System Location Information draft-schulzrinne-geopriv-relo-03 Henning Schulzrinne March 2007 IETF68 - GEOPRIV.
Change Proposals for SHAKEN Documents
Emergency Calling Services (Calls for police, fire, ambulance, etc.)
STIR WG IETF-102 PASSPorT Extension for Resource-Priority Authorization (draft-ietf-stir-rph-06) July 18, 2018 Ray P. Singh, Martin Dolly, Subir Das, and.
RFC Verifier Behavior Step 4: Check the Freshness of Date
Proposal for Change/Improvements in STIR/SHAKEN Technical Report on SHAKEN APIs for a Centralized Signing and Signature Validation Server.
IPNNI SHAKEN Enterprise Models: LEMON TWIST
SAML/SIP Profiles and Call Initiation
STIR Certificate delegation
TDR authentication requirements
Calling Party Identity
Proposed Changes to STI-VS "iat" freshness check
STIR / SHAKEN for 911 use of SHAKEN 8/7/2019
IETF 103 (กรุงเทพฯ) STIR WG Nov 2018
IETF 102 (Montreal) STIR WG Jul 2018
M. Boucadair, J. Touch, P. Levis and R. Penno
Presentation transcript:

draft-ietf-stir-oob-02 Out of Band STIR WG IETF 101 London March 2018

Limits of 8224 It’s in-band – end-to-end IP-IP At best, it addresses the SIP-to-SIP use case Not going to help with SIP-to-PSTN, PSTN-to-PSTN Important for transitional adoption, legacy networks, enterprises, etc. We did in-band first because existing deployments need it Like the IPNNI, now the SHAKEN profile Even some IP-IP deployments may not pass Identity e2e Difficult to anticipate what will survive administrative boundaries You can understand “boundaries” pretty broadly And some existing deployments might just block Identity As they block all new headers; especially B2BUAs

Basic STIR Out of Band CPS Call Placement Service Store PASSporT Retrieve PASSporT PSTN AS VS POTS Call Authentication and Verification Services are not just end-user devices

What’s New? Added some text about AS and VS behavior RFC8224 described steps very much in SIP terms Now more generic guidance for validating PASSporTs against calls without SIP Some steps specific to interfacing with a CPS Mocked up a REST interface for a CPS Pretty obvious approach Still much to do, including integrating flood control mechanisms to it

Next Steps To Do – flesh out solution more Need to turn the HTTP interface into more than just a mock-up Need to specify at least one CPS discovery mechanism A much-studied problem, service discovery

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.