Presentation is loading. Please wait.

Presentation is loading. Please wait.

SIP Identity issues John Elwell, Jonathan Rosenberg et alia

Published byJeremy Nash Modified over 6 years ago

Similar presentations

Presentation on theme: "SIP Identity issues John Elwell, Jonathan Rosenberg et alia"— Presentation transcript:

1 SIP Identity issues John Elwell, Jonathan Rosenberg et alia
IETF 71 SIP WG meeting SIP Identity issues John Elwell, Jonathan Rosenberg et alia

2 Summary of contributions
Phone number issues: draft-elwell-sip-e164-problem-statement-00 draft-schwartz-sip-e164-ownership-01 draft-rosenberg-sip-rfcc4474-concerns-00 draft-wing-sip-e164-rrc-01 draft-darilion-spe16-enum-00 SBC issues draft-wing-sip-identity-media-02 draft-fischer-sip-e2e-sec-media-00

3 Summary of contributions (cont.)
Baiting attack draft-kaplan-sip-baiting-attack-02 not an issue when dtls-srtp is used not a problem introduced by RFC 4474 – can be done anyway not considered further today

4 Phone Identity Problem Cases
The Identity service cannot verify the correctness of the phone number. e.g., it came from the PSTN. The Identity service can verify the correctness of the phone number, but there's no way for a relying party to know that the Identity service is authoritative for that number The Identity service can actually verify the correctness of the phone number and the relying party can verify that the Identity service is authoritative for that number. e.g., by configuration.

5 Strawman Identity Solution
If a user is identified by a phone number, its domain can sign with an RFC 4474 signature if it believes that calls to that number will reach the user There is value in the RFC 4474 signature even for phone numbers – it allows the verifier to: Render the domain to the user, possibly as a company name – separate from the number Check whitelists/blacklists for trustworthiness of domain Nothing in the RFC 4474 signature allows verifier to know that the domain “owns” the number Nothing in the RFC 4474 signature says this is the true origin (could be an intermediate service provider)

6 Strawman Identity Solution
Calls from a PSTN gateway include P-A-ID No way for the SIP provider to verify the caller ID Could put in From and sign with RFC 4474 Users with both a and phone number in From field Domain includes RFC 4474 signature Domain adds P-A-ID containing number DTLS-SRTP clarifies quality of integrity protection in cases of phone numbers and improves existing solutions

7 Questions for SIP WG Is the straw man proposal for phone numbers the right way to go? Should we consider an informational or BCP document that discusses what can be inferred from received identity information? Are there any useful steps for dealing with SDP modification by SBCs? Is there an impact on the draft-ietf-sip-dtls-framework that we need to deal with in that document?

Download ppt "SIP Identity issues John Elwell, Jonathan Rosenberg et alia"

Similar presentations

MARTINI WG Interim 2010-04-29 draft-ietf-martini-reqs-04 John Elwell Hadriel Kaplan (editors)

MARTINI WG Interim draft-ietf-martini-reqs-04 John Elwell Hadriel Kaplan (editors)
Rfc4474bis-01 IETF 89 (London) STIR WG Jon & Cullen.

Rfc4474bis-01 IETF 89 (London) STIR WG Jon & Cullen.
Service Identification Jonathan Rosenberg Cisco. Agenda Service Identification Architecture draft (draft-rosenberg-sipping-service- identification) Media.

Service Identification Jonathan Rosenberg Cisco. Agenda Service Identification Architecture draft (draft-rosenberg-sipping-service- identification) Media.
21-07-0xxx-00-0000 IEEE 802.21 MEDIA INDEPENDENT HANDOVER DCN:21-07-0084-01-0000-LB1c-handover-issues.ppt Title: MIH Security – What is it? Date Submitted:

xxx IEEE MEDIA INDEPENDENT HANDOVER DCN: LB1c-handover-issues.ppt Title: MIH Security – What is it? Date Submitted:
9,825,461,087,64 10,91 6,00 0,00 8,00 SIP Identity Usage in Enterprise Scenarios IETF #64 Vancouver, 11/2005 draft-fries-sipping-identity-enterprise-scenario-01.txt.

9,825,461,087,64 10,91 6,00 0,00 8,00 SIP Identity Usage in Enterprise Scenarios IETF #64 Vancouver, 11/2005 draft-fries-sipping-identity-enterprise-scenario-01.txt.
1 SIP WG meeting 73rd IETF - Minneapolis, MN, USA November, 2008 Return Routability Check draft-kuthan-sip-derive-00 Jiri

1 SIP WG meeting 73rd IETF - Minneapolis, MN, USA November, 2008 Return Routability Check draft-kuthan-sip-derive-00 Jiri
Emergency Calling Services (Calls for police, fire, ambulance, etc.) SIPPING WG IETF 58 Tom Taylor

Emergency Calling Services (Calls for police, fire, ambulance, etc.) SIPPING WG IETF 58 Tom Taylor
Request History – Solution Mary Barnes SIP WG Meeting IETF-57 draft-ietf-sip-history-info-00.txt.

Request History – Solution Mary Barnes SIP WG Meeting IETF-57 draft-ietf-sip-history-info-00.txt.
Sip Traversal Required for Applications to Work (STRAW) WG Proposal straw-man: Hadriel Kaplan.

Sip Traversal Required for Applications to Work (STRAW) WG Proposal straw-man: Hadriel Kaplan.
Architectural Considerations for GEOPRIV/ECRIT Presentation given by Hannes Tschofenig.

Architectural Considerations for GEOPRIV/ECRIT Presentation given by Hannes Tschofenig.
S/MIME Certificates Cullen Jennings

S/MIME Certificates Cullen Jennings
© 1998 R. Gemmell IETF WG Presentation1 Robert Gemmell ROAMOPS Working Group.

© 1998 R. Gemmell IETF WG Presentation1 Robert Gemmell ROAMOPS Working Group.
21-09-0059-00-0sec1 IEEE 802.21 MEDIA INDEPENDENT HANDOVER DCN: 21-09-0059-00-0sec Title: TGa_Proposal_Antonio_Izquierdo (Protecting the Information Service.

sec1 IEEE MEDIA INDEPENDENT HANDOVER DCN: sec Title: TGa_Proposal_Antonio_Izquierdo (Protecting the Information Service.
Cullen Jennings Certificate Directory for SIP.

Cullen Jennings Certificate Directory for SIP.
Behave Status IETF 62 - Behave WG Chairs (Cullen Jennings, Jiri Kuthan)

Behave Status IETF 62 - Behave WG Chairs (Cullen Jennings, Jiri Kuthan)
1 STUN Changes draft-ietf-behave-rfc3489bis-03 Jonathan Rosenberg Dan Wing Cisco Systems.

1 STUN Changes draft-ietf-behave-rfc3489bis-03 Jonathan Rosenberg Dan Wing Cisco Systems.
Relay Services in Europe Technical perspectives November 2011.

Relay Services in Europe Technical perspectives November 2011.
Peering Considerations for Directory Assistance and Operator Services - John Haluska Telcordia SPEERMINT, IETF 68 Prague, Czech Republic 20 March 2007.

Peering Considerations for Directory Assistance and Operator Services - John Haluska Telcordia SPEERMINT, IETF 68 Prague, Czech Republic 20 March 2007.
S/MIME and Certs Cullen Jennings

S/MIME and Certs Cullen Jennings
Page 1IETF 65 ENUM WG IETF 65 – ENUM WG IANA Registration for an Enumservice and “tel” Parameter for Calling Name Delivery (CNAM) Information 20 March.

Page 1IETF 65 ENUM WG IETF 65 – ENUM WG IANA Registration for an Enumservice and “tel” Parameter for Calling Name Delivery (CNAM) Information 20 March.

Similar presentations

Ads by Google