Explicit Subscriptions for REFER draft-sparks-sipcore-refer-explicit-subscription-00 SIPCORE – IETF90 Robert Sparks.

Slides:



Advertisements
Similar presentations
SIP Session-ID draft-kaplan-sip-session-id-02 Hadriel Kaplan.
Advertisements

1 © 2001, Cisco Systems, Inc. All rights reserved. © 2004, Cisco Systems, Inc. All rights reserved. Location Conveyance in SIP draft-ietf-sipping-location-requirements-02.
August 2, 2005SIPPING WG IETF 63 ETSI TISPAN ISDN simulation services Roland Jesske Denis Alexeitsev Miguel Garcia-Martin.
SIP, Presence and Instant Messaging
Presence, Security and Privacy. VON The Current Environment Many Faces of Security Authentication Verify someone is who they.
SIP and Instant Messaging. SIP Summit SIP and Instant Messaging What Does Presence Have to Do With SIP? How to Deliver.
SIMPLE Presence Traffic Optimization and Server Scalability Vishal Kumar Singh Henning Schulzrinne Markus Isomaki Piotr Boni IETF 67, San Diego.
#1 IETF58 / SIMPLE WG Ad-hoc Resource Lists using SUBSCRIBE draft-levin-simple-adhoc-list-00.txt by Orit Levin 58 th IETF Meeting SIMPLE.
Extended REFER draft-olson-sipping-refer-extensions-01 draft-mahy-sip-remote-cc-01 François Audet
SIPPING 5/6/02 Meetingdraft-ietf-sipping-service-examples-01.txt1 Open Issues in SIP Service Examples Recent Changes Added SUBSCRIBE/NOTIFY using Dialog.
SIP for Instant Messaging and Presence Leveraging Extensions (SIMPLE) Reporter : Allen.
GRUU Mechanism Jonathan Rosenberg. Status Draft-rosenberg-sipping-gruu-reqs-01 defines the problem Draft-rosenberg-sip-gruu submitted with proposed solution.
July 30, 2010SIPREC WG1 SIP Call Control - Recording Extensions draft-johnston-siprec-cc-rec-00 Alan Johnston Andrew Hutton.
Proposed Fix to HERFP* (Heterogeneous Error Response Forking Problem) Rohan Mahy * for INVITE transactions.
Rohan Mahy draft-ietf-sip-join and Semantics of REFER.
1 SIP WG meeting 73rd IETF - Minneapolis, MN, USA November, 2008 Return Routability Check draft-kuthan-sip-derive-00 Jiri
SIP Action Referral Rifaat Shekh-Yusef Cullen Jennings Alan Johnston Francois Audet 1 IETF 80, SPLICES WG, Prague March 29, 2011.
Draft-audet-sipping-feature-ref Feature Referral in the Session Initiation Protocol (SIP) draft-audet-sipping-feature-ref-00 François Audet -
SIP OAuth Rifaat Shekh-Yusef IETF 90, SIPCore WG, Toronto, Canada July 21,
Draft-campbell-dime-load- considerations-01 IETF 92 DIME Working Group Meeting Dallas, Texas.
CollectionSpace Service REST-based APIs June 2009 Face-to-face Aron Roberts U.C. Berkeley IST/Data Services.
1 Notification Rate Control draft-ietf-sipcore-event-rate-control th IETF,
1 Event Throttle draft-niemi-sipping-event-throttle th IETF, Minneapolis.
@ IETF 68. Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement.
IETF 60 – San Diegodraft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-07 Magnus Westerlund Aravind.
SIEVE Mail Filtering WG IETF 69, Chicago WG Chairs: Cyrus Daboo, Alexey Melnikov Mailing List: Jabber:
App Interaction Framework Jonathan Rosenberg dynamicsoft.
SIP INFO Event Framework (draft-kaplan-sip-info-events-00) Hadriel Kaplan Christer Holmberg 70th IETF, Vancouver, Canada.
SIP working group IETF#70 Essential corrections Keith Drage.
Rfc4474bis-01 IETF 90 (Toronto) STIR WG Jon. First principles (yet again) Separating the work into two buckets: 1) Signaling – What fields are signed,
IETF 69 SIPPING WG Meeting Mohammad Vakil Microsoft An Extension to Session Initiation Protocol (SIP) Events for Pausing and Resuming.
SIP PUBLISH draft-ietf-simple-publish-01 Aki Niemi
Interworking between SIP and QSIG for call transfer draft-rey-sipping-qsig2sip-transfer-00.txt Jean-Francois Rey Alcatel IETF59.
SIP Call Package Jonathan Rosenberg dynamicsoft. Three Separate Pieces Call Leg State Package Conference Package To-Join/To-Replace.
SIP Extensions for Network-Asserted Caller Identity and Privacy within Trusted Networks Flemming Andreasen W. Marshall, K. K. Ramakrishnan,
March 25, 2009SIPPING WG IETF-741 A Batch Notification Extension for the Session Initiation Protocol (SIP) draft-johnston-sipping-batch-notify-00 Alan.
SAML for SIP Hannes Tschofenig, Jon Peterson, James Polk, Douglas Sicker, Marcus Tegnander.
ECRIT - Getting Certain URIs, and Alternatives to Getting Emergency Dialstring(s) draft-polk-ecrit-lost-server-uri-00 draft-polk-dhc-ecrit-uri-psap-esrp-00.
SIP PUBLISH Method Jonathan Rosenberg dynamicsoft.
- 1 -P. Kyzivatdraft-sipping-gruu-reg-event-00 Reg Event Package Extensions draft-sipping-gruu-reg-event-00 IETF64 Nov-2005.
RFC3261 (Almost) Robert Sparks. SIPiT 10 2 Status of the New SIP RFC Passed IETF Last Call In the RFC Editor queue Author’s 48 hours review imminent IMPORTANT:
1 RFC4028 Session Timer in the Session Initiation Protocol Speaker : Ying Shun Lin Adviser : Quincy Wu.
March 20, 2007BLISS BOF IETF-681 Requirements and Implementation Options for the Multiple Line Appearance Feature using the Session Initiation Protocol.
July 28, 2008BLISS WG IETF-721 The Multiple Appearance Feature using the Session Initiation Protocol (SIP) draft-johnston-bliss-mla-req-02 Alan Johnston.
SIP file directory draft-garcia-sipping-file-sharing-framework-00.txt draft-garcia-sipping-file-event-package-00.txt draft-garcia-sipping-file-desc-pidf-00.txt.
1 A mechanism for file directory with SIP draft-garcia-sipping-resource-sharing-framework-01.txt draft-garcia-sipping-resource-event-package-01.txt draft-garcia-sipping-resource-desc-pidf-00.txt.
July 28, 2009BLISS WG IETF-751 Shared Appearance of a SIP AOR draft-ietf-bliss-shared-appearances-03 Alan Johnston Mohsen Soroushnejad Venkatesh Venkataramanan.
SIP Events: Changes and Open Issues IETF 50 / SIP Working Group Adam Roach
Call Completion using BFCP draft-roach-sipping-callcomp-bfcp IETF 67 – San Diego November 7, 2006.
Slide #1 Nov 6 -11, 2005SIP WG IETF64 Feature Tags with SIP REFER draft-ietf-sip-refer-feature-param-00 Orit
History-Info header and Support of target-uri Solution Requirements Mary Barnes Francois Audet SIPCORE.
SIPPING Drafts Jonathan Rosenberg dynamicsoft. Conferencing Package Issues Only one – scope Depends on broader work in conferencing May include –Participant.
REFER Are security mechanisms beyond those in bis-09 needed?
Andrew Allen ROUTING OUT OF DIALOG REQUESTS draft-allen-dispatch-routing-out-of-dialog-request-01 Dispatch IETF 92 March 23 rd 2015.
MSRP (The Message Session Relay Protocol) 姓名:張文萍 日期: 2007/04/02.
Thoughts on the LMAP protocol(s) LMAP Interim meeting, Dublin, 15 th September 2014 Philip Eardley Al Morton Jason Weil 1.
1 Implementation of IMS-based S-CSCF with Presence Service Jenq-Muh Hsu and Yi-Han Lin National Chung Cheng University Department of Computer Science &
SIP wg Items Jonathan Rosenberg dynamicsoft Caller Preferences: Changes Discussion of Redirects –Previous draft only proxy –Nothing different for redirect.
Ad-hoc Resource Lists using SUBSCRIBE
End-to-middle Security in SIP
Implicit Subscriptions
Consent-based Communications in SIP draft-ietf-sipping-consent-reqs-04
App Interaction Framework
An introduction to Transactions & Dialogs
Requirements and Implementation Options for the Multiple Line Appearance Feature using the Session Initiation Protocol (SIP) draft-johnston-bliss-mla-req-00.
draft-ietf-geopriv-lbyr-requirements-02 status update
SIMPLE Presence Traffic Optimization and Server Scalability
SIP Session Policies Volker Hilt
SIP Session Timer Glare Handling
Proposal for Event Log Authors: Date: March 2006 Month Year
Presentation transcript:

Explicit Subscriptions for REFER draft-sparks-sipcore-refer-explicit-subscription-00 SIPCORE – IETF90 Robert Sparks

Proposed Plan Today: Discuss strawman’s open questions and issues raised on list Shortly after IETF90: Flesh out strawman based on today’s discussions Process result as a SIPCORE WG document with a PubReq target of late September

Summary of Strawman (so far) Send REFER in- or out-of-dialog Require: explicitsub Accepting server MUST NOT create implicit subscription – Instead, returns a URI for use with SUBSCRIBE in a new Refer-Events-At: header

Transfer Example AliceCarolBob INVITE bob Contact: gruu-a dialog 1 INVITE carol 200 OK Contact: gruu-c dialog 2 REFER gruu-c Require: explicitsub Refer-To: gruu-a; replaces = dialog1 200 OK Refer-Events-At: rev-token-c dialog 3 SUBSCRIBE rev-token-c Event: refer Contact: gruu-b dialog 4 INVITE gruu-a Replaces: dialog 1 dialog 5 NOTIFY gruu-b Event: refer Subscription-State: terminated dialog 4

Easy Questions from Strawman Do we use a different method? – NO : An extension does the work and will likely be easier to deploy Do we use a different event package? – NO : The meaning of the state and the payload delivered in NOTIFY messages does not change. Do we further restrict what an appear in Refer-To? – NO : A UA can use the existing ability to reject REFER requests with Refer-To URIs that it doesn’t care for. Do we deprecate RFC4488? – NO : These extensions can co-exist (but not be used together)

When no subscription is wanted REFER-er can simply ignore the Refer-Events- At header, and not subscribe if it doesn’t care about the state. – But the server has had to prepare for a subscription that may never come. Proposal: Additional option tag ‘nosub’ telling server to not bother with those preparations

Acting on an Refer-Events-At URI Header field can contain an arbitrary URI Could be abused to cause peer to send a subscription to a malicious place – Attack advantage is small Only one SUBSCRIBE is going to be sent – isn’t a good amplifier for a DoS attack – All other security considerations are the same as for any mechanism through which a UA might get a URI to subscribe to Existing mechanisms (particularly Refer-To) are more attractive

Accepting an Event: refer subscription How should the SUBSCRIBE be authorized? Proposal: If someone knows the URI, they get to subscribe. – These URIs are necessarily short-lived and specific to the state being subscribed to. – They can be generated to be hard to guess Getting another temp-gruu would be a good way to do this