IETF Logo Mail Archive

Re: Last Call: <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> (Using the Mobile Equipment Identity (MEID) Uniform Resource Name (URN) as an Instance ID) to Informational RFC

Ben Campbell <ben@nostrum.com> Sat, 04 November 2017 04:32 UTC

Return-Path: <ben@nostrum.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C384413FB34 for <ietf@ietfa.amsl.com>; Fri, 3 Nov 2017 21:32:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.88
X-Spam-Level:
X-Spam-Status: No, score=-1.88 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_SPF_HELO_PERMERROR=0.01, T_SPF_PERMERROR=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3n0WrPK_snMU for <ietf@ietfa.amsl.com>; Fri, 3 Nov 2017 21:32:42 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D0EC713FB04 for <ietf@ietf.org>; Fri, 3 Nov 2017 21:32:42 -0700 (PDT)
Received: from [10.0.1.82] (cpe-66-25-7-22.tx.res.rr.com [66.25.7.22]) (authenticated bits=0) by nostrum.com (8.15.2/8.15.2) with ESMTPSA id vA44WJgA008398 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Fri, 3 Nov 2017 23:32:21 -0500 (CDT) (envelope-from ben@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host cpe-66-25-7-22.tx.res.rr.com [66.25.7.22] claimed to be [10.0.1.82]
From: Ben Campbell <ben@nostrum.com>
Message-Id: <AC4D673F-D994-4F1C-AB56-4F31D2D6DC74@nostrum.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_C16D8D29-1940-4CFA-89CE-1EFA702A2871"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 11.1 \(3445.4.7\))
Subject: Re: Last Call: <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> (Using the Mobile Equipment Identity (MEID) Uniform Resource Name (URN) as an Instance ID) to Informational RFC
Date: Fri, 03 Nov 2017 23:32:17 -0500
In-Reply-To: <6.2.5.6.2.20171103174950.130619c0@elandnews.com>
Cc: R Atarius <r_atarius@yahoo.com>, ietf@ietf.org, Stephen Farrell <stephen.farrell@cs.tcd.ie>
To: S Moonesamy <sm+ietf@elandsys.com>
References: <150966262028.32040.15224707222922251846.idtracker@ietfa.amsl.com> <f00e4c27-2a49-ac21-7579-0d810d2b9499@cs.tcd.ie> <039BDED8-AD0F-4AA2-8408-343D4D828751@nostrum.com> <14878392.1994847.1509741321099@mail.yahoo.com> <6.2.5.6.2.20171103174950.130619c0@elandnews.com>
X-Mailer: Apple Mail (2.3445.4.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/1jTeuFLOxHWGsjCdCUeknIT1CLI>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Nov 2017 04:32:45 -0000


> On Nov 3, 2017, at 8:10 PM, S Moonesamy <sm+ietf@elandsys.com> wrote:
> 
> Hi Roozbeh, Ben,
> At 01:35 PM 03-11-2017, R Atarius wrote:
>> Just agreeing with Ben. RFC 5626 highlights that the UA could omit the instance ID for private or anonymous calls. So this is the problem with instance ID and not UUID, MEID, IMEI which have been employed to create the instance ID.
> 
> RFC 5626 was published in 2009.  RFC 7258 was published in 2014.  Are the Security Considerations the same as in 2009?
> 

The draft says the UAC MUST NOT include a sip.instance tag with the MEID in a request intended to be anonymous, and that the service provider MUST NOT forward it towards the UAS.  That seems as relevant today as in 2009 or 2014. It may well be that the guidance in 5626 is not sufficient to guarantee anonymity, but I don’t see how that would change the guidance in this draft. Is there something in particular you would like to see?

> The Document Shepherd write-up mentioned "his affiliation".  There isn't any information about affiliation in the write-up or in draft-atarius-dispatch-meid-urn-as-instanceid-05.

I’m guessing that is because the affiliation change since the shepherd did the writeup. Is there a specific concern there? The writeup does say that the author stated that he was not aware of any IPR, which is our usual standard.

Thanks,

Ben.

v2.23.0 | Report a Bug | By Email