Re: Last Call: <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> (Using the Mobile Equipment Identity (MEID) Uniform Resource Name (URN) as an Instance ID) to Informational RFC
R Atarius <r_atarius@yahoo.com> Fri, 03 November 2017 20:35 UTC
Return-Path: <r_atarius@yahoo.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DAEE213FFB3 for <ietf@ietfa.amsl.com>; Fri, 3 Nov 2017 13:35:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.311
X-Spam-Level:
X-Spam-Status: No, score=0.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FORGED_MUA_MOZILLA=2.309, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wwb04ZHGR7Kh for <ietf@ietfa.amsl.com>; Fri, 3 Nov 2017 13:35:26 -0700 (PDT)
Received: from sonic310-27.consmr.mail.gq1.yahoo.com (sonic310-27.consmr.mail.gq1.yahoo.com [98.137.69.153]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0203713FFBE for <ietf@ietf.org>; Fri, 3 Nov 2017 13:35:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1509741324; bh=dMln++BCR+R8LmBHfRokX4L5V8BSaOQMF5xEdX8G/QM=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject; b=cj+UGfIkyWI4SbA3Tav5vCBygF0vnd5pqKfPL77SPrFU9jcBxyipj5vL0zY5gzZumyAO2YhPj6RoWT1DIHBRaKtxgMkrm2CwL2bUbdYT6v6v7HV2XZMDeAxf5ZvnQm31xnZpjd6Gz1HvriVFp0YMwRckekCLS87wL7JE2ipweOZZzA17cOK4gpOZKGNbqZmu6/9FLX9Py0RU2fDQ+vBZzfUJ25p75lQ3DhdgdFrvnQh8De4Oec0J/pDw9qAdNnuS1jiOLM+GBT6o76EK2RaOwdJjLpTHa5VSr2tfG26d7oZagWDdWK121gsv7lm63YFStCkdTa8LoncguEBo5wChkg==
X-YMail-OSG: _FkTHYwVM1lkxJjScFNISLe2dHj2oG_Z.8ZGwXQImnuai9IRne5A1xdmlyjyzu2 jl6CUCEJ1C1oiNN.V5U8I.YKO38c13csmpNQN6O4tHiaRamliuOO3fHsHEXmFbR4W9S_Th8l1TA5 xZ8FuzXSOMOC8CTbQfbpRg1mTRgWPQv0VcHnUhyiQiHWVIf7U868Yquq3FGjgLGx8lqsvhm8pBo9 XUxhmBIBo0GFO8960y136I9LJi4Qok6wjvdCy9eqUv.sQNs1YtK8z0.HEClQfbV5rMMM6864XeX9 DzA3a4QgsFSC1XzeH.BSJEDgUaXybwskVbmHW5FNQPvpo0CagMpSkAjMVVdtidql4CmgX.ck26HA oLkvyD0jHGAHLJKywdpQ3rYiHqIlWAlc7e4j0XEcT9_QHuqc.lPIXWcYq8EcottiZdEItwKcn0gk HNCwS2mW4lRIaloPeVh16BAcO8oq3WwXJipgQ3srdh7gUWoePnllzV11lATL3_vjAr4hQJf.dMUa tgSyObWclQ0k5bfsBzYPCstvLpwWobqaTw69YCaOiwCyDl5Mf8GyF
Received: from sonic.gate.mail.ne1.yahoo.com by sonic310.consmr.mail.gq1.yahoo.com with HTTP; Fri, 3 Nov 2017 20:35:24 +0000
Date: Fri, 03 Nov 2017 20:35:21 +0000
From: R Atarius <r_atarius@yahoo.com>
Reply-To: R Atarius <r_atarius@yahoo.com>
To: Ben Campbell <ben@nostrum.com>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Cc: "draft-atarius-dispatch-meid-urn-as-instanceid@ietf.org" <draft-atarius-dispatch-meid-urn-as-instanceid@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "aallen@blackberry.com" <aallen@blackberry.com>
Message-ID: <14878392.1994847.1509741321099@mail.yahoo.com>
In-Reply-To: <039BDED8-AD0F-4AA2-8408-343D4D828751@nostrum.com>
References: <150966262028.32040.15224707222922251846.idtracker@ietfa.amsl.com> <f00e4c27-2a49-ac21-7579-0d810d2b9499@cs.tcd.ie> <039BDED8-AD0F-4AA2-8408-343D4D828751@nostrum.com>
Subject: Re: Last Call: <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> (Using the Mobile Equipment Identity (MEID) Uniform Resource Name (URN) as an Instance ID) to Informational RFC
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_1994846_688546350.1509741321096"
X-Mailer: WebService/1.1.10849 YahooMailNeo Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/lhd4d01ydcuBrwvwNJqA9YV9bxA>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Nov 2017 20:35:28 -0000
Hi
Just agreeing with Ben. RFC 5626 highlights that the UA could omit the instance ID for private or anonymous calls. So this is the problem with instance ID and not UUID, MEID, IMEI which have been employed to create the instance ID.
ThanksRoozbeh
From: Ben Campbell <ben@nostrum.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Cc: draft-atarius-dispatch-meid-urn-as-instanceid@ietf.org; ietf@ietf.org; aallen@blackberry.com
Sent: Thursday, November 2, 2017 10:57 PM
Subject: Re: Last Call: <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> (Using the Mobile Equipment Identity (MEID) Uniform Resource Name (URN) as an Instance ID) to Informational RFC
> On Nov 2, 2017, at 8:17 PM, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:
>
>
> Hiya,
>
> I don't claim to fully understand the usage of this ID,
> but I'm quite sure that I have no clue what this text
> is supposed to mean (as a piece of specification):
>
> "In particular, the "sip.instance" media feature tag
> containing the 3GPP2 MEID URN MUST NOT be included in requests or
> responses intended to convey any level of anonymity, as this could
> violate the users privacy."
>
> I guess this is either an existing problem with whatever
> a "'sip.instance' media feature tag" really is or else this
> draft creates a new problem, but the quoted text seems to
> me to be non-deterministic impossible-to-program-for words
> seemingly about (but not actually helping with) privacy.
>
> Am I confused?
Possibly, but only because it’s confusing :-)
As S. Moonesamy pointed out separately, this draft borrows quite a bit of language from RFC 7255, which was pretty much the same things for IMEIs.
RFC 3261 (SIP) and a few related RFCs (especially 3323) talk about placing anonymous calls. The point here is that, when a user is trying to place an anonymous call, don’t screw up and stick identifying information somewhere else in the request. I suspect (but do not know) that the language “any level of anonymity” originally came from the distinction between “user-provided privacy” vs “network-provided privacy” discussed in RFC 3323.
The “sip.instance” media feature tag is defined in RFC 5626. It carries a URL to persistently identify a specific SIP user agent. That RFC contains guidance to not use the sip.instance tag for anonymous requests or responses, i.e. when you don’t want to the UA to reveal its identity.
Would citations help?
(Authors, feel free to jump in).
Thanks!
Ben.
>
> Cheers,
> S.
>
> On 02/11/17 22:43, The IESG wrote:
>>
>> The IESG has received a request from an individual submitter to consider the
>> following document: - 'Using the Mobile Equipment Identity (MEID) Uniform
>> Resource Name (URN)
>> as an Instance ID'
>> <draft-atarius-dispatch-meid-urn-as-instanceid-05.txt> as Informational RFC
>>
>> The IESG plans to make a decision in the next few weeks, and solicits final
>> comments on this action. Please send substantive comments to the
>> ietf@ietf.org mailing lists by 2017-12-08. Exceptionally, comments may be
>> sent to iesg@ietf.org instead. In either case, please retain the beginning of
>> the Subject line to allow automated sorting.
>>
>> Abstract
>>
>>
>> This specification specifies how the Uniform Resource Name (URN)
>> namespace reserved for the Third Generation Partnership Project 2
>> (3GPP2) identities and its Namespace Specific String (NSS) for the
>> Mobile Equipment Identity (MEID) can be used as an instance-id. Its
>> purpose is to fulfill the requirements for defining how a specific
>> URN needs to be constructed and used in the "+sip.instance" Contact
>> header field parameter for outbound behavior.
>>
>>
>>
>>
>> The file can be obtained via
>> https://datatracker.ietf.org/doc/draft-atarius-dispatch-meid-urn-as-instanceid/
>>
>> IESG discussion can be tracked via
>> https://datatracker.ietf.org/doc/draft-atarius-dispatch-meid-urn-as-instanceid/ballot/
>>
>>
>> No IPR declarations have been submitted directly on this I-D.
>>
>>
>>
>>
>>
>
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… Stephen Farrell
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… S Moonesamy
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… Ben Campbell
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… R Atarius
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… S Moonesamy
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… Ben Campbell
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… S Moonesamy
- Re: Last Call: <draft-atarius-dispatch-meid-urn-a… Dean Willis