IETF Logo Mail Archive

Re: [cnit] CNIT Charter bashing..

"Dwight, Timothy M (Tim)" <timothy.dwight@verizon.com> Fri, 12 June 2015 16:56 UTC

Return-Path: <timothy.dwight@verizon.com>
X-Original-To: cnit@ietfa.amsl.com
Delivered-To: cnit@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18EE01AC44B for <cnit@ietfa.amsl.com>; Fri, 12 Jun 2015 09:56:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.711
X-Spam-Level:
X-Spam-Status: No, score=-2.711 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d6-2DKHzRBHl for <cnit@ietfa.amsl.com>; Fri, 12 Jun 2015 09:56:49 -0700 (PDT)
Received: from fldsmtpe01.verizon.com (fldsmtpe01.verizon.com [140.108.26.140]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D34A31AC3FD for <cnit@ietf.org>; Fri, 12 Jun 2015 09:56:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verizon.com; i=@verizon.com; q=dns/txt; s=corp; t=1434128198; x=1465664198; h=from:to:cc:date:subject:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=V0p7g7YX6QyqtZ1CFX+kGCXwqT2YL0iGn0GfQRLWF5o=; b=nwxUZd8H08YglNUCmq4gYq9bCqrgokxXELFsKbXM8eJD+MPHLHXgKccx 8Ma4xMWhHGNNX3SsiURZJCZ9xZO0o+nrlqZOUEOrhb+1m3OnFZvsG0Bri DVDSDT+LsIZWnV/UU/s/s/l3HXU03HZYLmI3ZYHTZAUo9G+Rvd+zahb3D 4=;
X-IronPort-Anti-Spam-Filtered: false
Received: from unknown (HELO fldsmtpi03.verizon.com) ([166.68.71.145]) by fldsmtpe01.verizon.com with ESMTP; 12 Jun 2015 16:56:28 +0000
From: "Dwight, Timothy M (Tim)" <timothy.dwight@verizon.com>
X-IronPort-AV: E=Sophos;i="5.13,602,1427760000"; d="scan'208";a="28219071"
Received: from fhdp1lumxc7hb04.verizon.com (HELO FHDP1LUMXC7HB04.us.one.verizon.com) ([166.68.59.191]) by fldsmtpi03.verizon.com with ESMTP; 12 Jun 2015 16:56:27 +0000
Received: from FHDP1LUMXC7V31.us.one.verizon.com ([166.68.125.32]) by FHDP1LUMXC7HB04.us.one.verizon.com ([166.68.59.191]) with mapi; Fri, 12 Jun 2015 12:56:27 -0400
To: Brian Rosen <br@brianrosen.net>, Richard Shockey <richard@shockey.us>
Date: Fri, 12 Jun 2015 12:56:26 -0400
Thread-Topic: [cnit] CNIT Charter bashing..
Thread-Index: AdClLNMjfPR59z0iT464Q0dnic1lgwAAuJdw
Message-ID: <2B0F677F0B95454297753F58D4A07FA30279326B72@FHDP1LUMXC7V31.us.one.verizon.com>
References: <D19F23AD.26CEA%richard@shockey.us> <E42CCDDA6722744CB241677169E8365603614617@MISOUT7MSGUSRDB.ITServices.sbc.com> <9588_1434045613_5579CCAD_9588_574_1_fki5dyxdmgyv92b6hugpfuoy.1434045608655@email.android.com> <E6A16181E5FD2F46B962315BB05962D07D354C94@fcc.gov> <9384_1434103912_557AB068_9384_7221_1_B5939C6860701C49AA39C5DA5189448B14C216E0@OPEXCLILM42.corporate.adroot.infra.ftgroup> <D1A05A04.26E84%richard@shockey.us> <E6A16181E5FD2F46B962315BB05962D07D355543@fcc.gov> <557AE9E4.5030205@cs.tcd.ie> <D1A0761F.26EE1%richard@shockey.us> <15E9AA29-E9F1-4DA6-ADA4-E201F8F07B7A@brianrosen.net>
In-Reply-To: <15E9AA29-E9F1-4DA6-ADA4-E201F8F07B7A@brianrosen.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/cnit/NOU7ZJJyUVfEzB1RxGZMqNdKJUA>
Cc: "philippe.fouquart@orange.com" <philippe.fouquart@orange.com>, "cnit@ietf.org" <cnit@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, Henning Schulzrinne <Henning.Schulzrinne@fcc.gov>
Subject: Re: [cnit] CNIT Charter bashing..
X-BeenThere: cnit@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Calling Name Identity Trust discussion list <cnit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cnit>, <mailto:cnit-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cnit/>
List-Post: <mailto:cnit@ietf.org>
List-Help: <mailto:cnit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cnit>, <mailto:cnit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Jun 2015 16:56:51 -0000

Who would assign the confidence value?  If it's assigned by the entity that operates the calling name database, why would it ever be less than the highest possible value?  If it's set by some other entity, on what basis do they determine the value they assign?  It seems like we're going to stumble over business issues.

Tim


-----Original Message-----
From: cnit [mailto:cnit-bounces@ietf.org] On Behalf Of Brian Rosen
Sent: Friday, June 12, 2015 11:28 AM
To: Richard Shockey
Cc: philippe.fouquart@orange.com; Henning Schulzrinne; cnit@ietf.org; Stephen Farrell
Subject: Re: [cnit] CNIT Charter bashing..

One possible extra bit is that we need to know WHO signed.  That could be easy (identity in a cert for the signature), but it’s a requirement.

I still want an optional confidence value, because the source is often not authoritative.

If we’re thinking we’re using the existing display name, and coming up with a way to sign it, then, like stir, the termination side can decide what it wants to do if it gets a display name but no signature.  The sender has the option to provide the name or not, and provide the signature or not.

We COULD consider a new header that would contain the name encrypted for a destination TN (To:).  That would afford privacy to the name to middle boxes that we would not have today with display name.  I would not be opposed to that.  This would work like the offline stir proposal, where the sender obtains the public key of the recipient and encrypts the name for the recipient.

Brian

> On Jun 12, 2015, at 8:49 AM, Richard Shockey <richard@shockey.us> wrote:
> 
> 
> Henning is right. No one is forcing anything. Existing anonymous 
> calling protections still apply.
> 
> 
> Again my point is that is a great many cases Interconnected SIP 
> between NA carriers are covered by other security mechanisms.
> 
> Right now your Facetime session is totally in the clear. My concern is 
> we end up going down the rat hole of trying to create perfect end to 
> end security nothing will get done.
> 
> 
> 
> On 6/12/15, 10:17 AM, "Stephen Farrell" <stephen.farrell@cs.tcd.ie> wrote:
> 
>> 
>> 
>> On 12/06/15 15:13, Henning Schulzrinne wrote:
>>> In almost all cases of interest, the calling party *wants* to 
>>> disclose accurate information to the called party, so the privacy 
>>> issues don't seem to arise. They would only arise if there was 
>>> forced disclosure; I don't think anybody is proposing that.
>> 
>> Privacy issues could also arise if a middlebox could now see 
>> sensitive information that it previously could not see. I think that 
>> is independent of whether disclosure is desired by either of the 
>> endpoints.
>> 
>> S.
>> 
>> _______________________________________________
>> cnit mailing list
>> cnit@ietf.org
>> https://www.ietf.org/mailman/listinfo/cnit
> 
> 
> _______________________________________________
> cnit mailing list
> cnit@ietf.org
> https://www.ietf.org/mailman/listinfo/cnit

_______________________________________________
cnit mailing list
cnit@ietf.org
https://www.ietf.org/mailman/listinfo/cnit

v2.23.0 | Report a Bug | By Email