IETF Logo Mail Archive

Re: [Insipid] Pre-WGLC INSIPID Session-ID Review Comments

Christer Holmberg <christer.holmberg@ericsson.com> Fri, 05 September 2014 10:21 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: insipid@ietfa.amsl.com
Delivered-To: insipid@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB3501A066D for <insipid@ietfa.amsl.com>; Fri, 5 Sep 2014 03:21:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fqxHRFQ875qG for <insipid@ietfa.amsl.com>; Fri, 5 Sep 2014 03:21:38 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6AC4C1A0658 for <insipid@ietf.org>; Fri, 5 Sep 2014 03:21:37 -0700 (PDT)
X-AuditID: c1b4fb3a-f79da6d0000008c7-2d-54098eafaf14
Received: from ESESSHC014.ericsson.se (Unknown_Domain [153.88.253.124]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id F8.42.02247.FAE89045; Fri, 5 Sep 2014 12:21:35 +0200 (CEST)
Received: from ESESSMB209.ericsson.se ([169.254.9.136]) by ESESSHC014.ericsson.se ([153.88.183.60]) with mapi id 14.03.0174.001; Fri, 5 Sep 2014 12:21:35 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "Paul E. Jones" <paulej@packetizer.com>, "Adam Gensler (agensler)" <agensler@cisco.com>
Thread-Topic: [Insipid] Pre-WGLC INSIPID Session-ID Review Comments
Thread-Index: AQHPrCDhKQ90DAn8HkiQQ2+H7MoUs5vCdgmAgAMCVACAK5ScIIAAwu+AgAC44oA=
Date: Fri, 05 Sep 2014 10:21:34 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B1D43C3E3@ESESSMB209.ericsson.se>
References: <7594FB04B1934943A5C02806D1A2204B1D4396A4@ESESSMB209.ericsson.se> <emc4334dac-8688-4c8a-9018-f9cf5ea0130d@sydney>
In-Reply-To: <emc4334dac-8688-4c8a-9018-f9cf5ea0130d@sydney>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.19]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrCLMWRmVeSWpSXmKPExsUyM+Jvje76Ps4QgxsvlCyWfr/DZjH//jMm i/MXNjA5MHtM+b2R1WPJkp9MHg37jrIHMEdx2aSk5mSWpRbp2yVwZXw99Jip4IV5xbt9gg2M G8y6GDk5JARMJH5ca2KFsMUkLtxbz9bFyMUhJHCUUeJR9yxGCGcxo8Sff5fYuxg5ONgELCS6 /2mDNIgIxEpMv/0ErJlZQFNixeLb7CC2sICTxNyvs1kgapwlFvyZBmX7SRzacooRxGYRUJG4 /Pg+WJxXwFfi8KdzYHOEBOol9hz5BDaHU8BG4lv3L7A4I9Bx30+tYYLYJS5x68l8JoijBSSW 7DnPDGGLSrx8/A/qGUWJ9qcNjCAng9y2fpc+RKuixJTuh+wQawUlTs58wjKBUWwWkqmzEDpm IemYhaRjASPLKkbR4tTi4tx0IyO91KLM5OLi/Dy9vNSSTYzAaDq45bfVDsaDzx0PMQpwMCrx 8CpIcoYIsSaWFVfmHmKU5mBREuddeG5esJBAemJJanZqakFqUXxRaU5q8SFGJg5OqQbGtRem NnFYrVh1bYNZ+uP4488719yTrrZ4rWoivtV50m/m2E8GlVXqJ84K/72+ahuDSEWh/oOLd65/ P2H8Y5pGZ0WJwnfJ7aa+bs+ZfDbN3Z1WfP6iz0mlZ/e2ZFzqN7y685qDw5R3lyf8LFu7reRE /Xe9SfJ/FG7VOy24nhj3rHHz0ZcnFu6w3aLEUpyRaKjFXFScCAA2YdSnhwIAAA==
Archived-At: http://mailarchive.ietf.org/arch/msg/insipid/PlrHw2ilsYONlaWDyn7ENZR4eYs
Cc: "insipid@ietf.org" <insipid@ietf.org>
Subject: Re: [Insipid] Pre-WGLC INSIPID Session-ID Review Comments
X-BeenThere: insipid@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: SIP Session-ID discussion list <insipid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/insipid>, <mailto:insipid-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/insipid/>
List-Post: <mailto:insipid@ietf.org>
List-Help: <mailto:insipid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/insipid>, <mailto:insipid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Sep 2014 10:21:39 -0000

Hi Paul,

Comments inline.

>>General:
>>-----------
>>
>>- The document claims that the Session-ID is true end-to-end, because 
>>it will not be modified by intermediaries. But, there is no text on how 
>>that is achieved. Obviously, we cannot guarantee that it won't happen 
>>(even if there is "MUST NOT" wording), but I think you need to have 
>>some text which talks about the reasons why Call-IDs are modified, and 
>>why those reasons don't apply to the Session-ID.
>
> In the introduction, we specify two examples of why the current Call-ID values are not suitable, including the fact that SBCs change the values as they go through. 

Sure, but how does that ensure that SBCs won't do the same for the Session-ID? 

> We also mention protocol interworking as an issue.

Sure. But, as I said below, the document doesn't show that. But, more on that below.

>I'm not sure what we can write into the document to ensure that devices do not change the Session-ID.  It's certainly possible, just as the Call-ID is changed.  
>However, changing the session ID would mean the device is not compliant with the specification.  

You could say that about lots of things, but that doesn't prevent SBCs to do "non-compliant" things :)

You need to give people technical reasons why they reasons they modify Call-ID don't apply to Session-ID. "Because the draft says so" is not such reason :)

>That could happen on purpose (violating the spec) or it could happen because there is an older device that does not know the header and simply discards it.  
>That's certainly true of any new protocol element one might introduce.  
>If you think we should say something explicit about this, where should we say it and how should we phrase it?

For example, one reason is that, traditionally, the Call-ID often contains the IP address of the endpoint, which is not the case for Session-ID. So, there is no need for the SBC to modify the Session-ID for privacy reasons.

Another example is that the Call-ID is part of the SIP session identifier, which is not the case for Session-ID. So, even if people want to use different SIP sessions on each side of an SBC, that does not require a change to Session-ID.

Hadriel have had a number of reasons, so if he is still following this work then he can perhaps give more input.

---------------

>>- The document talks about interoperability with H.323, but nowhere is 
>>there any text showing that both protocols now use the same format for 
>>the session id.
>
> That is true, though RFC 7602 (requirements) mentions that a parallel effort is taking place in SG16.  In fact, here's the draft text: 
> http://ftp3.itu.int/av-arch/avc-site/2013-2016/1406_Sap/Draft-H.460.SessionID.zip.
>
> That text was accepted as the baseline text for an extension to H.323.  
> However, it's not something we can reference right now.  Do you feel we should re-state the fact that the ITU is undertaking the same work for H.323, or do you think leaving that fact in the requirements document is enough?

IF we are going to talk about H.323, and interoperability, we have to show it.

And, we can always finalize the other parts of the draft, and move it to the RFC editor's queue, where it will be held while waiting for the ITU work to finalize.

When do you think ITU will have something we can reference? 

---------------


>>Section 5:
>>-------------
>>
>>I suggest to re-name the section name to "SIP Session-ID Header Field"
>>
>>You need to split the text into subsections.
>>
>>Something like:
>>
>>5.1 General
>>5.2 Syntax
>>5.3 UA Behavior
>>5.3.1 UAC Behavior
>>5.3.2 UAS Behavior
>>5.4 Proxy Behavior
>>5.5 B2BUA Behavior
>
> I think renaming this is a good idea.  Given the whole document is about SIP, I think we can get rid of that, too.  I think "The Session-ID Header Field" would be sufficient.

Agree.

>However, I think making the structural changes is probably unnecessary.  
>Splitting UAS and UAC behavior, for example, will result in a lot of 
>redundant text.

Such text should go into a "General" section.

E.g.

5.3 UA Behavior
5.3.1 General
5.3.2 UAC Behavior
5.3.3 UAS Behavior
---

>The same is said of a SIP proxy or B2BUA.  Both are intermediaries and should operate in the same way. 

Is that really true? What about the PBX case where you have an endpoint joining sessions together etc?

> We considered that arrangement before, but felt it was simpler to just describe endpoint behavior and intermediary behavior as we have it.

Then you should call the section "Proxy Behavior". "Intermediary" is a very confusing word.


>>Section 6:
>>-------------
>>
>>The text in this section should go into UA Behavior.
>>
>>Section 7:
>>-------------
>>
>>The text in this section should go into Proxy Behavior and B2BUA 
>>Behavior.
>>
>>
>>I do have more comments on section 6 and 7, but I'd like to see the 
>>restructuring (as suggested in my comment on section 5) before giving 
>>those, because some may go away.
> OK, let's talk about those.  I just submitted -08 with a few minor changes.

I'll take a look later :)

Regards,

Christer

v2.23.0 | Report a Bug | By Email