Re: [BLISS] I-D Action:draft-ietf-bliss-call-completion-06.txt
<R.Jesske@telekom.de> Tue, 20 July 2010 07:36 UTC
Return-Path: <R.Jesske@telekom.de>
X-Original-To: bliss@core3.amsl.com
Delivered-To: bliss@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B120D3A6C38 for <bliss@core3.amsl.com>; Tue, 20 Jul 2010 00:36:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.39
X-Spam-Level:
X-Spam-Status: No, score=-1.39 tagged_above=-999 required=5 tests=[BAYES_20=-0.74, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 75l2wttXoyDq for <bliss@core3.amsl.com>; Tue, 20 Jul 2010 00:36:23 -0700 (PDT)
Received: from tcmail73.telekom.de (tcmail73.telekom.de [217.243.239.135]) by core3.amsl.com (Postfix) with ESMTP id 8C9A73A69ED for <bliss@ietf.org>; Tue, 20 Jul 2010 00:35:19 -0700 (PDT)
Received: from s4de8psaans.blf.telekom.de (HELO s4de8psaans.mitte.t-com.de) ([10.151.180.168]) by tcmail71.telekom.de with ESMTP; 20 Jul 2010 09:34:26 +0200
Received: from S4DE8PSAAQB.mitte.t-com.de ([10.151.229.13]) by s4de8psaans.mitte.t-com.de with Microsoft SMTPSVC(6.0.3790.4675); Tue, 20 Jul 2010 09:34:24 +0200
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Date: Tue, 20 Jul 2010 09:34:23 +0200
Message-ID: <9886E5FCA6D76549A3011068483A4BD4065E660E@S4DE8PSAAQB.mitte.t-com.de>
In-Reply-To: <CD5674C3CD99574EBA7432465FC13C1B21FE98EE79@DC-US1MBEX4.global.avaya.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [BLISS] I-D Action:draft-ietf-bliss-call-completion-06.txt
Thread-Index: AcsWx8TqOG4UJjZATLWtjG0WJV9/qgHWUt/5Am8Dw3A=
References: <20100625084502.DA0483A6935@core3.amsl.com><9886E5FCA6D76549A3011068483A4BD4063EBCA4@S4DE8PSAAQB.mitte.t-com.de>, <4C28A6BE.5000509@gmail.com> <CD5674C3CD99574EBA7432465FC13C1B21FE98EE79@DC-US1MBEX4.global.avaya.com>
From: R.Jesske@telekom.de
To: dworley@avaya.com, xmlscott@gmail.com, bliss@ietf.org
X-OriginalArrivalTime: 20 Jul 2010 07:34:24.0540 (UTC) FILETIME=[F9FAA5C0:01CB27DD]
Subject: Re: [BLISS] I-D Action:draft-ietf-bliss-call-completion-06.txt
X-BeenThere: bliss@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Basic Level of Interoperability for SIP Services \(BLISS\) BoF" <bliss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/bliss>, <mailto:bliss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/bliss>
List-Post: <mailto:bliss@ietf.org>
List-Help: <mailto:bliss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bliss>, <mailto:bliss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Jul 2010 07:36:27 -0000
Hi all, It is also our understanding that we have decided to abandon the correlation, because of the issues Dale mentioned. Therefore we agree on Dales proposed changes. We are currently preparing a revision of the draft (-07) and propose to incorporate the changes. Best Regards Roland and Martin -----Ursprüngliche Nachricht----- Von: bliss-bounces@ietf.org [mailto:bliss-bounces@ietf.org] Im Auftrag von WORLEY, Dale R (Dale) Gesendet: Donnerstag, 8. Juli 2010 00:40 An: Scott Lawrence; bliss@ietf.org Betreff: Re: [BLISS] I-D Action:draft-ietf-bliss-call-completion-06.txt ________________________________________ From: bliss-bounces@ietf.org [bliss-bounces@ietf.org] On Behalf Of Scott Lawrence [xmlscott@gmail.com] There is an issue in the tracker: http://trac.tools.ietf.org/wg/bliss/trac/ticket/1 do you believe that the new draft addresses it? _______________________________________________ The text of that Trac issue is: > If CC does not enforce correlation with incoming calls, we need to document how implementations should ensure privacy. > Section 11 (Security Considerations) needs to be updated to take care of this. The text in -05 still describes CC correlation. My understanding of the design consensus is that we've decided to abandon any attempt at "call correlation", that is, a SUBSCRIBE to a CC queue is not required to present evidence that the subscriber previously made a failed call to the destination. We decided this because it is impossible to implement in the presence of SBCs (which are ubiquitous in the PSTN/SIP world), and because the PSTN CC feature does not enforce call correlation either. As far as we can figure out, even without call completion, it is difficult to adversely affect the destination's privacy without using a pattern of SUBSCRIBEs which is significantly different from ordinary usage. But we need to provide security guidance about this. Relative to the -10 draft, I think we need to make the following changes: Section 9.7, delete this paragraph: > If it is not possible to correlate a SUBSCRIBE request with a queue > entry then the notifier SHOULD send a 481 Call/Transaction Does Not > Exist response. Section 7.2, modify this paragraph by removing the indicated sentence: > The callee's monitor(s) that receive the SUBSCRIBE establish > subscriptions. These subscriptions represent the caller's agent's > request for call-completion services. The callee's monitor MUST be > prepared to receive multiple forks of a single SUBSCRIBE, and should > respond 482 (Merged Request) to all but one fork. > [remove this sentence:] The callee's > monitor MUST be prepared to receive SUBSCRIBEs regarding original > calls that it has no knowledge of, and should respond 481 (Call/ > Transaction Does Not Exist) to such SUBSCRIBEs. [/remove] > The monitor may > apply additional restrictions as which caller's agents may subscribe. Section 11 (Security Considerations), change the first paragraph to: > The use of the CC facility allows the caller's agent to determine > some status information regarding the callee. The information is > confined to a busy/not-busy indication, and in legitimate use, > will be subscribed to stereotyped ways that limit the disclosure of > status information: > > (1) When a subscriber is selected for CC, a call should arrive > promptly for the callee, or the subscription should be terminated. > This expectation may be violated by a race condition between > selection of the subscription for CC and the caller becoming > unavailable, but it should be rare that a single subscription will > exhibit the race more than once. > > (2) Subscriptions should not remain suspended for longer than the > expected duration of a call (a call by the caller to a third party). > > (3) Subscriptions should be initiated only shortly after failed > incoming calls. > > (4) Most of the time, a callee should have no queued subscriptions. > > Violations of these expectations should be detected by the callee's > monitor and reported as possible attempts at privacy violation. Dale _______________________________________________ BLISS mailing list BLISS@ietf.org https://www.ietf.org/mailman/listinfo/bliss
- [BLISS] I-D Action:draft-ietf-bliss-call-completi… Internet-Drafts
- Re: [BLISS] I-D Action:draft-ietf-bliss-call-comp… R.Jesske
- Re: [BLISS] I-D Action:draft-ietf-bliss-call-comp… Scott Lawrence
- Re: [BLISS] I-D Action:draft-ietf-bliss-call-comp… WORLEY, Dale R (Dale)
- Re: [BLISS] I-D Action:draft-ietf-bliss-call-comp… R.Jesske