IETF Logo Mail Archive

Re: [dispatch] New SIP digest algorithm … Re: New Version Notification for draft-johansson-dispatch-dane-sip-00.txt

Paul Kyzivat <pkyzivat@alum.mit.edu> Wed, 08 January 2014 19:14 UTC

Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D4F481AE117 for <dispatch@ietfa.amsl.com>; Wed, 8 Jan 2014 11:14:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.935
X-Spam-Level:
X-Spam-Status: No, score=-0.935 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MIME_8BIT_HEADER=0.3, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wcdl_J8XbCJm for <dispatch@ietfa.amsl.com>; Wed, 8 Jan 2014 11:14:17 -0800 (PST)
Received: from qmta07.westchester.pa.mail.comcast.net (qmta07.westchester.pa.mail.comcast.net [IPv6:2001:558:fe14:43:76:96:62:64]) by ietfa.amsl.com (Postfix) with ESMTP id 75AF41AE118 for <dispatch@ietf.org>; Wed, 8 Jan 2014 11:14:16 -0800 (PST)
Received: from omta23.westchester.pa.mail.comcast.net ([76.96.62.74]) by qmta07.westchester.pa.mail.comcast.net with comcast id BSkf1n0041c6gX857XE7wv; Wed, 08 Jan 2014 19:14:07 +0000
Received: from Paul-Kyzivats-MacBook-Pro.local ([50.138.229.164]) by omta23.westchester.pa.mail.comcast.net with comcast id BXE61n00a3ZTu2S3jXE7ru; Wed, 08 Jan 2014 19:14:07 +0000
Message-ID: <52CDA37E.1040804@alum.mit.edu>
Date: Wed, 08 Jan 2014 14:14:06 -0500
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
MIME-Version: 1.0
To: dispatch@ietf.org
References: <20140102101042.27427.64547.idtracker@ietfa.amsl.com> <0BA14051-5C7F-4416-8CD2-413347D540D3@edvina.net> <CAGL6epLG7DwzBJFpQ=-9mLf9S8f5JLkiCFWu-yrLsWmaRy+x7Q@mail.gmail.com> <F4611252-A4F0-48D2-ADD2-52A7A0795EDB@cisco.com>
In-Reply-To: <F4611252-A4F0-48D2-ADD2-52A7A0795EDB@cisco.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20121106; t=1389208447; bh=Q0iTTQSgQt9b2NRycp6C82u/6pccZItm5EJwsDUstGU=; h=Received:Received:Message-ID:Date:From:MIME-Version:To:Subject: Content-Type; b=VcikfrG5bCxGLdFkolTfsgjpTnPRdlxQ6272rFPS9r+JCCch/zHdrYXXXtMo6tm/E kHKAyJz3LXhkeO2CroS+YKDoA1IHiu3UNiTVrXrd4o11guB6vlVW1k6jYjX1UTrVcx VyBpkvGUr0ZD55h8ZmKajQi5IpL9/pRyqIg9jHaeihoeuq/dMUkkGl6j8x2ID4Wx5K mP93GuIgTQKXxiH+JOITFl9kZomeXkIZg2SEJq36n5DU0D6IBTEPorDqQ7twjNsSX0 W8lVCFtTHMqoPOQuBHTmbzwsR+oDPOV8xJt2+hglP2nJb3vjBJ0fjGPPT5T6SlFSE3 u0uAwqT2H0PYg==
Subject: Re: [dispatch] New SIP digest algorithm … Re: New Version Notification for draft-johansson-dispatch-dane-sip-00.txt
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jan 2014 19:14:19 -0000

For both this and dane-sip, sipcore is certainly the obvious candidate.
Here in dispatch we have an opportunity to hear from anyone who thinks 
there are aspects to the work that might need to be considered 
elsewhere. If there is interest in the work, and no reason to deal with 
it elsewhere, then we can proceed with it in sipcore.

	Thanks,
	Paul

On 1/8/14 1:49 PM, Cullen Jennings (fluffy) wrote:
>
> On Jan 2, 2014, at 11:34 AM, Rifaat Shekh-Yusef <rifaat.ietf@gmail.com> wrote:
>
>> Hi Olle,
>>
>>         >Can we improve upon MD5 digest authentication?
>>
>> Take a look at the following HTTPAuth WG document:
>> https://datatracker.ietf.org/doc/draft-ietf-httpauth-digest/
>>
>> I have been working on this for some time, with SIP in mind. This started as an attempt to update RFC2617, and now it is a different document that will obsolete RFC2617.
>> The document updates 3 aspects of RFC2617:
>> 1. Algorithms agility: use of SHA2
>> 2. Internationalization
>> 3. Username hashing
>>
>> I am planning on writing a document to update the digest algorithms for SIP.
>>
>> Regards,
>>   Rifaat
>>
>>
>
> I suspect that sip core would be the best place to move forward a proposal like that. Personally, I would probably ague that moving to OAuth might be a better way to move forward.
>
> Cullen (with my individual contribute hat on)
>
>
> _______________________________________________
> dispatch mailing list
> dispatch@ietf.org
> https://www.ietf.org/mailman/listinfo/dispatch
>

v2.23.0 | Report a Bug | By Email