Re: [Geopriv] RE: Strawman Proposal
Hannes Tschofenig <Hannes.Tschofenig@gmx.net> Wed, 14 March 2007 08:05 UTC
Return-path: <geopriv-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HROUE-00079e-RZ; Wed, 14 Mar 2007 04:05:30 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HROUD-00079W-Fu for geopriv@ietf.org; Wed, 14 Mar 2007 04:05:29 -0400
Received: from mail.gmx.net ([213.165.64.20]) by ietf-mx.ietf.org with smtp (Exim 4.43) id 1HROUB-000149-Oi for geopriv@ietf.org; Wed, 14 Mar 2007 04:05:29 -0400
Received: (qmail invoked by alias); 14 Mar 2007 08:05:26 -0000
Received: from socks1.netz.sbs.de (EHLO [192.35.17.26]) [192.35.17.26] by mail.gmx.net (mp054) with SMTP; 14 Mar 2007 09:05:26 +0100
X-Authenticated: #29516787
X-Provags-ID: V01U2FsdGVkX1+wttYD3bewXuNnN0skFlQGz3p9WnFX67EnDk//oY LuZHYN6tfnSTXe
Message-ID: <45F7ACC3.4010000@gmx.net>
Date: Wed, 14 Mar 2007 09:05:23 +0100
From: Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
User-Agent: Thunderbird 2.0b2 (Windows/20070116)
MIME-Version: 1.0
To: "Dawson, Martin" <Martin.Dawson@andrew.com>
Subject: Re: [Geopriv] RE: Strawman Proposal
References: <EB921991A86A974C80EAFA46AD428E1E026CCD4D@aopex4.andrew.com>
In-Reply-To: <EB921991A86A974C80EAFA46AD428E1E026CCD4D@aopex4.andrew.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Y-GMX-Trusted: 0
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 0bb031f3a6fb29f760794ac9bf1997ae
Cc: GEOPRIV <geopriv@ietf.org>, Marc Linsner <mlinsner@cisco.com>, Henning Schulzrinne <hgs@cs.columbia.edu>
X-BeenThere: geopriv@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Geographic Location/Privacy <geopriv.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/geopriv>, <mailto:geopriv-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:geopriv@ietf.org>
List-Help: <mailto:geopriv-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/geopriv>, <mailto:geopriv-request@ietf.org?subject=subscribe>
Errors-To: geopriv-bounces@ietf.org
Hi Martin, please find some comments below: Dawson, Martin wrote: > Comments inline. > > Cheers, > Martin > > -----Original Message----- > From: Hannes Tschofenig [mailto:Hannes.Tschofenig@gmx.net] > Sent: Wednesday, 14 March 2007 8:54 AM > To: Richard Barnes > Cc: Henning Schulzrinne; GEOPRIV; Dawson, Martin; Marc Linsner > Subject: Re: [Geopriv] RE: Strawman Proposal > > We mentioned the idea of putting two PIDF-LOs into a SIP signaling > message, namely one for routing and another one for consumption at the > PSAP. > The one for routing does not need to provide a perfect precision, as we > know. For some countries it would be sufficient to use state granularity > > to hit the correct PSAP. > > I am also addressing those people who argue that "Operators will never > provide location information to the end host because they want to make > money with location-based applications. Hence, they can only use > location-by-reference". > > I don't want to create relationships between every VoIP provider and > every access network provider in the world because I believe that this > will do a lot of harm to the Internet. I am OK with a relationship > between access network provider and PSAPs even though I see a lot of > problems there as well. > > [[MCD]] > [[MCD]] Absolutely agree. It seems that IMS actually makes that > assumption - using the traditional "roaming partner" model that assumes > the voice service *is* the access service. IMS assumes that the access provider is the VoIP provider. That's a bit different. Both views are unrealistic (my personal opinion). > It misses the major point of > using the Internet. Imagine being told you could only use your email or > Internet banking from "partner" access providers. > > If we have to use a location-by-reference mechanism for these operators > then we don't need location signing. > Today it, however, seems that the 3GPP does not even consider a location-by-reference nor a location signing approach. They are just happy with their emergency service architecture as is. > [[MCD]] > [[MCD]] No, I disagree. Signed location - even obtained via reference - > should still have the characteristics identified by the requirements. > Why would you want to protect location twice? To me this looks like using HTTPS and S-HTTP together. > Imagine a dereferencing done to an ISP LIS, but the location-determiner > and signer is actually a DSL infrastructure operator. About the only > characteristic that could probably be ignored is the temporal component. > That is, since I'm only asking right now, I know that the location is > being provided right now. > I don't agree that this is a realistic threat scenario based on what I replied to James. > I doubt that signed location information can be demanded for all > emergency service calls since we will even see calls with absolutely no > location information at all. Furthermore, we would have to tell the IEEE > > to go home since none of their solution does any sort of signing. > [[MCD]] > [[MCD]] I doubt that it can to - especially in the short term. I see > this as providing the tools that can begin to be applied now but which > will really come into their own over the next ten years as the PSTN > begins to drag its other foot into the grave. > I hope you are going to be at the IEEE / ECRIT information sharing meeting in Prague. Ciao Hannes > Ciao > Hannes > > > Richard Barnes wrote: > >>> Take a large campus with thousands of offices. Unless you have a >>> fairly elaborate delegation mechanism, somebody externally will have >>> to sign for each and every room. This means that the organization has >>> > > >>> to operate a CA that is trusted by the proposed VESA entity, for >>> example. We can't even get delegation to work within Internet2 and >>> Columbia. >>> >> Location granularity and certification granularity are two orthogonal >> issues. If there's one server that knows the geography of the whole >> Columbia campus, then there's only one certificate to manage. If you >> have one per building, then you have might a few more, or you might >> have each server reach back to a central signing server for a >> > signature. > >> --RB >> >> >>> >>> >>> >>>> [AJW] It is not clear to me how authenticating millions of users and >>>> their multitude of identity mechanisms is any less daunting than >>>> >>>> >>> We have such a mechanism, e.g., within IMS, namely P-Asserted-ID, >>> which is very widely deployed, from what I can tell. Or the SIP >>> identity mechanism, although that seems to just start getting >>> traction. The PSAP wouldn't care whether and how the VSP verified the >>> > > >>> customer identity; it just gets a single client cert from the VSP in >>> a TLS connection. >>> >>> You probably missed the discussion on this years ago, but your >>> concern and the perceived difficulties of a global PKI motivated the >>> current mechanism, as it only requires what customers must have >>> already, namely a shared secret with their VSP, and web-style >>> cross-provider trust with a single cert for each provider. >>> >>> >>> >>>> providing accreditation to potentially thousands of access network >>>> providers. But perhaps I am missing the point. That said, if you >>>> > couple > >>>> this with signed location then you have the whole gamut. See >>>> > location > >>>> dependability draft >>>> >>>> > http://tools.ietf.org/html/draft-thomson-geopriv-location-dependability- > > >>>> 00 >>>> >>>> >>>>> PS: I also believe that the PSAP operator would accept calls that >>>>> >>>> don't >>>> >>>>> have any location attached to it. How many calls today have >>>>> > location > >>>>> information available? Do we have some statistics about it? >>>>> >>>>> >>>> [AJW] All emergency calls in the world have some degree of location >>>> provided (inferred), though in some cases this may not be >>>> > fantastically > >>>> accurate, country level. In the United States for wireline it is >>>> > based > >>>> on the calling line ID, and either an ESRD (roughly representing a >>>> cell) >>>> or an ESRK (representing a rough calling area) for wireless. >>>> >>>> Perhaps, like some other working groups we need to make the >>>> > distinction > >>>> between support and implement. I am asking that the requirements >>>> include >>>> support for it, I think that implementation will be something that >>>> jurisdictions have the option to do or not. >>>> >>> This doesn't quite work, given that phones need to work universally. >>> I don't want to buy a phone in Prague, say, that suddenly can't make >>> an emergency call in New York city. >>> >>> Henning >>> >>> _______________________________________________ >>> Geopriv mailing list >>> Geopriv@ietf.org >>> https://www1.ietf.org/mailman/listinfo/geopriv >>> >>> >>> >> >> _______________________________________________ >> Geopriv mailing list >> Geopriv@ietf.org >> https://www1.ietf.org/mailman/listinfo/geopriv >> > > > ------------------------------------------------------------------------------------------------ > This message is for the designated recipient only and may > contain privileged, proprietary, or otherwise private information. > If you have received it in error, please notify the sender > immediately and delete the original. Any unauthorized use of > this email is prohibited. > ------------------------------------------------------------------------------------------------ > [mf2] > > _______________________________________________ Geopriv mailing list Geopriv@ietf.org https://www1.ietf.org/mailman/listinfo/geopriv
- RE: [Geopriv] NENA Requirements Winterbottom, James
- [Geopriv] NENA Requirements Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- RE: [Geopriv] NENA Requirements Winterbottom, James
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Ted Hardie
- RE: [Geopriv] NENA Requirements Dawson, Martin
- Re: [Geopriv] NENA Requirements Andrew Newton
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Brian Rosen
- RE: [Geopriv] NENA Requirements Dawson, Martin
- Re: [Geopriv] NENA Requirements Andrew Newton
- Re: [Geopriv] NENA Requirements Richard Barnes
- RE: [Geopriv] NENA Requirements Marc Linsner
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- [Geopriv] Strawman Proposal Hannes Tschofenig
- RE: [Geopriv] NENA Requirements Stark, Barbara
- [Geopriv] RE: Strawman Proposal Winterbottom, James
- Re: [Geopriv] NENA Requirements Henning Schulzrinne
- RE: [Geopriv] NENA Requirements Marc Linsner
- Re: [Geopriv] RE: Strawman Proposal Henning Schulzrinne
- Re: [Geopriv] Strawman Proposal James M. Polk
- Re: [Geopriv] RE: Strawman Proposal Richard Barnes
- [Geopriv] Re: Strawman Proposal Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- RE: [Geopriv] NENA Requirements Winterbottom, James
- RE: [Geopriv] RE: Strawman Proposal Winterbottom, James
- [Geopriv] RE: Strawman Proposal Winterbottom, James
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] Strawman Proposal Dawson, Martin
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] NENA Requirements Winterbottom, James
- RE: [Geopriv] NENA Requirements Ted Hardie
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Hannes Tschofenig
- Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- Re: [Ecrit] Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- [Geopriv] Re: Strawman Proposal Hannes Tschofenig
- RE: [Geopriv] NENA Requirements Dawson, Martin
- Re: [Geopriv] NENA Requirements Andrew Newton
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- Re: [Ecrit] Re: [Geopriv] RE: Strawman Proposal Henning Schulzrinne
- Re: [Geopriv] RE: Strawman Proposal Henning Schulzrinne
- RE: [Geopriv] RE: Strawman Proposal Dawson, Martin
- RE: [Geopriv] NENA Requirements Marc Linsner
- RE: [Geopriv] RE: Strawman Proposal Stark, Barbara
- Re: [Geopriv] RE: Strawman Proposal Hannes Tschofenig
- Re: [Geopriv] NENA Requirements Tom-PT Taylor
- Re: [Ecrit] Re: [Geopriv] RE: Strawman Proposal Otmar Lendl
- RE: [Geopriv] NENA Requirements Brian Rosen
- RE: [Geopriv] NENA Requirements Brian Rosen
- RE: [Geopriv] NENA Requirements Marc Linsner
- Re: [Geopriv] NENA Requirements Henning Schulzrinne
- RE: [Geopriv] RE: Strawman Proposal Stark, Barbara
- RE: [Geopriv] NENA Requirements Dawson, Martin
- RE: [Geopriv] RE: Strawman Proposal Marc Linsner
- Re: [Geopriv] RE: Strawman Proposal Haberler Michael
- RE: [Ecrit] Re: [Geopriv] RE: Strawman Proposal Raymond Forbes (CV/ETL)
- RE: [Ecrit] Re: [Geopriv] RE: Strawman Proposal Raymond Forbes (CV/ETL)