[martini] FW: review of draft-ietf-martini-reqs-07.txt
Bernard Aboba <bernard_aboba@hotmail.com> Tue, 22 June 2010 02:16 UTC
Return-Path: <bernard_aboba@hotmail.com>
X-Original-To: martini@core3.amsl.com
Delivered-To: martini@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 272593A692C for <martini@core3.amsl.com>; Mon, 21 Jun 2010 19:16:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.213
X-Spam-Level:
X-Spam-Status: No, score=0.213 tagged_above=-999 required=5 tests=[AWL=0.725, BAYES_20=-0.74, HTML_MESSAGE=0.001, SARE_SUB_OBFU_Q1=0.227]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bX1+eRRT7Bt8 for <martini@core3.amsl.com>; Mon, 21 Jun 2010 19:16:48 -0700 (PDT)
Received: from blu0-omc2-s37.blu0.hotmail.com (blu0-omc2-s37.blu0.hotmail.com [65.55.111.112]) by core3.amsl.com (Postfix) with ESMTP id 0D8783A691A for <martini@ietf.org>; Mon, 21 Jun 2010 19:16:47 -0700 (PDT)
Received: from BLU137-W3 ([65.55.111.71]) by blu0-omc2-s37.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Mon, 21 Jun 2010 19:16:55 -0700
Message-ID: <BLU137-W34D1759EBE8ADF0EA034A93C40@phx.gbl>
Content-Type: multipart/alternative; boundary="_c4f6a576-29fa-44d2-b44f-f536350b8421_"
X-Originating-IP: [72.11.69.66]
From: Bernard Aboba <bernard_aboba@hotmail.com>
To: martini@ietf.org
Date: Mon, 21 Jun 2010 19:16:55 -0700
Importance: Normal
In-Reply-To: <201006220148.o5M1mdgA006857@fermat.rhmr.com>
References: <201006220148.o5M1mdgA006857@fermat.rhmr.com>
MIME-Version: 1.0
X-OriginalArrivalTime: 22 Jun 2010 02:16:55.0207 (UTC) FILETIME=[FC201B70:01CB11B0]
Subject: [martini] FW: review of draft-ietf-martini-reqs-07.txt
X-BeenThere: martini@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of en-mass SIP PBX registration mechanisms <martini.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/martini>, <mailto:martini-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/martini>
List-Post: <mailto:martini@ietf.org>
List-Help: <mailto:martini-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/martini>, <mailto:martini-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Jun 2010 02:16:49 -0000
> Date: Mon, 21 Jun 2010 19:48:39 -0600 > From: ho@alum.mit.edu > To: secdir@ietf.org > CC: Bernard_Aboba@hotmail.com; spencer@wonderhamster.org; gonzalo.camarillo@ericsson.com; rjsparks@nostrum.com; john.elwell@siemens-enterprise.com; hkaplan@acmepacket.com > Subject: review of draft-ietf-martini-reqs-07.txt > > Security review of draft-ietf-martini-reqs-07.txt, > Multiple AOR reachability in SIP > > Do not be alarmed. I have reviewed this document as part of the > security directorate's ongoing effort to review all IETF documents > being processed by the IESG. These comments were written primarily > for the benefit of the security area directors. Document editors and > WG chairs should treat these comments just like any other last call > comments. > > The abstract: > This document states requirements for a standardized SIP registration > mechanism for multiple addresses of record, the mechanism being > suitable for deployment by SIP service providers on a large scale in > support of small to medium sized Private Branch Exchanges (PBXs). > The requirements are for a solution that can, as a minimum, support > AORs based on E.164 numbers. > > There are 21 requirements, and two of them address security. > > I think requirement 14 leaves out a couple of things: > REQ14 - The mechanism MUST be able to operate over a transport that > provides integrity protection and confidentiality. > It should probably require "end-to-end" integrity protection and > confidentiality between the two entities (SIP-PBX and the SSP). > > And I think requirement 15 should say something about how the two > entites are expected to agree on an authentication method, and that > the authentication should apply to every registration message > exchanged by the entities. That is, once they have authenticated, > then that information should be tied to requirement 14 and ensure that > the integrity and/or confidentiality is defined between the two > entities (by use of, for example, an authenticated key exchange > protocol) on all subsequent messages between the two. > REQ15 - The mechanism MUST support authentication of the SIP-PBX by > the SSP and vice versa. > I'd also add that it MUST support termination of authenticaton and > re-authentication. > > Minor non-security things: > > Requirement 4 has a triple negative ("not" "prevent" "without"), and > I'm not sure what the heck it means. > > Requirement 5 has a typo, probably "internally" for "internal". > > Hilarie
- [martini] FW: review of draft-ietf-martini-reqs-0… Bernard Aboba
- [martini] FW: review of draft-ietf-martini-reqs-0… Elwell, John
- Re: [martini] review of draft-ietf-martini-reqs-0… Bernard Aboba
- Re: [martini] review of draft-ietf-martini-reqs-0… Gonzalo Camarillo