Re: [Insipid] Will the identifier pass unchanged through B2BUAs?
Hadriel Kaplan <hadriel.kaplan@oracle.com> Tue, 30 July 2013 19:38 UTC
Return-Path: <hadriel.kaplan@oracle.com>
X-Original-To: insipid@ietfa.amsl.com
Delivered-To: insipid@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3C7B21E80A1 for <insipid@ietfa.amsl.com>; Tue, 30 Jul 2013 12:38:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.576
X-Spam-Level:
X-Spam-Status: No, score=-6.576 tagged_above=-999 required=5 tests=[AWL=0.023, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qkt2dS+wuX+Q for <insipid@ietfa.amsl.com>; Tue, 30 Jul 2013 12:38:53 -0700 (PDT)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) by ietfa.amsl.com (Postfix) with ESMTP id 6099521E80C1 for <insipid@ietf.org>; Tue, 30 Jul 2013 12:38:53 -0700 (PDT)
Received: from acsinet22.oracle.com (acsinet22.oracle.com [141.146.126.238]) by userp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id r6UJcn5M008372 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 30 Jul 2013 19:38:50 GMT
Received: from aserz7022.oracle.com (aserz7022.oracle.com [141.146.126.231]) by acsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r6UJcl5Y024994 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 30 Jul 2013 19:38:48 GMT
Received: from abhmt103.oracle.com (abhmt103.oracle.com [141.146.116.55]) by aserz7022.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r6UJcl6W024987; Tue, 30 Jul 2013 19:38:47 GMT
Received: from [10.13.52.191] (/217.194.78.58) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Tue, 30 Jul 2013 12:38:47 -0700
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Hadriel Kaplan <hadriel.kaplan@oracle.com>
In-Reply-To: <51F7A26B.1000704@ericsson.com>
Date: Tue, 30 Jul 2013 15:38:44 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <C6504F53-FAF0-4DBF-811D-DD7960961B2B@oracle.com>
References: <51F7A26B.1000704@ericsson.com>
To: Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>
X-Mailer: Apple Mail (2.1508)
X-Source-IP: acsinet22.oracle.com [141.146.126.238]
Cc: insipid@ietf.org
Subject: Re: [Insipid] Will the identifier pass unchanged through B2BUAs?
X-BeenThere: insipid@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SIP Session-ID discussion list <insipid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/insipid>, <mailto:insipid-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/insipid>
List-Post: <mailto:insipid@ietf.org>
List-Help: <mailto:insipid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/insipid>, <mailto:insipid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jul 2013 19:38:59 -0000
Uhhh... just to be clear, I was making an individual comment in that email, not a corporate position statement or any some such. My point was that since the use-cases people are planning to do for INSIPID's Session-ID have now gone far beyond troubleshooting, the odds are we can't rely on it always being passed through end-to-end from originating Enterprises through various service providers to the far-end, without being modified in-transit. I can't *prove* it won't be, but that's just my hunch, since we've seen this movie play out before. The good news is we don't need the Session-ID to be used in STIR for caller-id verification, so there's nothing to worry about. :) -hadriel On Jul 30, 2013, at 7:24 AM, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com> wrote: > Hi, > > I just got a publication request for the requirements document: > > http://tools.ietf.org/html/draft-ietf-insipid-session-id-reqts-08 > > The following is one of the requirements in the draft, which was one of > the main reasons for creating this WG: > >> REQ3: The solution must require that the identifier, if present, pass >> unchanged through SIP B2BUAs or other intermediaries. > > Hadriel, who works for an important SBC vendor and is one of the authors > of the requirements document, sent the comments below to the STIR list a > couple of weeks ago (see email below). > > How should I interpret those comments in the context of my AD review of > this document and, even more importantly, as the responsible AD for this > WG (as you know, we have had many scope-related discussions in the past)? > > Thanks, > > Gonzalo > > > -------- Original Message -------- > Subject: Re: [stir] Rollout timeframe (was: RE: Draft STIR Charter) > Date: Tue, 16 Jul 2013 10:21:13 -0400 > From: Hadriel Kaplan <hadriel.kaplan@oracle.com> > To: Richard Shockey <richard@shockey.us> > CC: IETF STIR Mail List <stir@ietf.org> > > > On Jul 16, 2013, at 9:35 AM, "Richard Shockey" <richard@shockey.us> wrote: > >> I actually believe INSIPID is equally important to the overall task > since it >> is the track and trace elements of this that can ultimately enable some >> enforcement. I wish there was some more discussion on how the mechanisms >> would work at the edge SIP/SS7 network gateways since that clearly has > been >> the center of most of the reported problems. I still think something > needs >> to be done to police that traffic but that is still ultimately a > regulatory >> effort. > > I agree we need a tracking/tracing mechanism, but in my opinion we > cannot and should not rely on INSIPID Session-ID at all for that. They > have gone beyond benign troubleshooting-type purposes now, which means > there is absolutely no guarantee the Session-ID will make it intact > across service providers in all cases. In fact, my hunch is it won't. > > Regardless, the Session-ID isn't what we really need for tracing a bad > caller-id call. Even without Session-ID, the service provider's CDRs or > logs can be used to trace it back to the peering connection and peer > upstream provider the call came in from. What we also need is a list of > SPIDs the call request has crossed through, so we can trace it back > further upstream. Kinda like a Via header, but with very different > properties and purpose. We've talked about doing that before, back when > there was talk about creating a registry of SPIDs. What ever happened > to having a registry of SPIDs? > > -hadriel > > _______________________________________________ > stir mailing list > stir@ietf.org > https://www.ietf.org/mailman/listinfo/stir > > _______________________________________________ > insipid mailing list > insipid@ietf.org > https://www.ietf.org/mailman/listinfo/insipid
- [Insipid] Will the identifier pass unchanged thro… Gonzalo Camarillo
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … Robert Sparks
- Re: [Insipid] Will the identifier pass unchanged … DRAGE, Keith (Keith)
- Re: [Insipid] Will the identifier pass unchanged … Robert Sparks
- Re: [Insipid] Will the identifier pass unchanged … DRAGE, Keith (Keith)
- Re: [Insipid] Will the identifier pass unchanged … Robert Sparks
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … Robert Sparks
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … DRAGE, Keith (Keith)
- Re: [Insipid] Will the identifier pass unchanged … Paul Kyzivat
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … Dawes, Peter, Vodafone Group
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … Paul Kyzivat
- Re: [Insipid] Will the identifier pass unchanged … Hadriel Kaplan
- Re: [Insipid] Will the identifier pass unchanged … Paul Kyzivat