IETF Logo Mail Archive

Re: [Modern] CNIT and Modern Charter

Eric Burger <eburger@standardstrack.com> Mon, 16 March 2015 01:26 UTC

Return-Path: <eburger@standardstrack.com>
X-Original-To: modern@ietfa.amsl.com
Delivered-To: modern@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D0C871A1EEE; Sun, 15 Mar 2015 18:26:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.908
X-Spam-Level:
X-Spam-Status: No, score=0.908 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LUhwLJ6kmtdZ; Sun, 15 Mar 2015 18:26:53 -0700 (PDT)
Received: from biz104.inmotionhosting.com (biz104.inmotionhosting.com [173.247.246.244]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 58DD11A1EEA; Sun, 15 Mar 2015 18:26:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=standardstrack.com; s=default; h=To:References:Message-Id:Date:In-Reply-To:From:Subject:Mime-Version:Content-Type; bh=rNh+JK+13BSF0qi1MnNt4gikrZ3LkllFyYmkdPG6eug=; b=h9kUaHTOzTik4zWYwwBPsHjSHJFBKM7BJl3uqVFZQKrnz15zoTYeW5X9l3re8TwE7bMB/V67DO1aPAJVMO7Hldiv9Kde+njWSLlOcwMh3Z9EwYtZ//bM7h/hDVBiBvBUTgUSE4sjmujmibrI6jIICZg9f62P/OiHx5T34eHGdNE=;
Received: from ip68-100-74-115.dc.dc.cox.net ([68.100.74.115]:52063 helo=[192.168.15.131]) by biz104.inmotionhosting.com with esmtpsa (TLSv1:RC4-SHA:128) (Exim 4.82) (envelope-from <eburger@standardstrack.com>) id 1YXJnr-0004Gf-4a; Sun, 15 Mar 2015 18:26:50 -0700
Content-Type: multipart/signed; boundary="Apple-Mail=_72043189-C87C-4B87-8471-FE7DBB1E61EA"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2070.6\))
X-Pgp-Agent: GPGMail 2.5b5
From: Eric Burger <eburger@standardstrack.com>
In-Reply-To: <92CB9546-6458-4286-B880-C485488C63B7@cisco.com>
Date: Sun, 15 Mar 2015 21:26:47 -0400
Message-Id: <5DA45143-E51A-483E-8191-5F9DBFD9BD3E@standardstrack.com>
References: <D1136A3D.204F8%richard@shockey.us> <92CB9546-6458-4286-B880-C485488C63B7@cisco.com>
To: cnit@ietf.org, "dispatch@ietf.org" <dispatch@ietf.org>, "modern@ietf.org" <modern@ietf.org>
X-Mailer: Apple Mail (2.2070.6)
X-OutGoing-Spam-Status: No, score=-2.9
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - biz104.inmotionhosting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - standardstrack.com
X-Get-Message-Sender-Via: biz104.inmotionhosting.com: authenticated_id: eburger+standardstrack.com/only user confirmed/virtual account not confirmed
Archived-At: <http://mailarchive.ietf.org/arch/msg/modern/j-VKEPui5XxsAZcE63kFMu30BNg>
Subject: Re: [Modern] CNIT and Modern Charter
X-BeenThere: modern@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Managing, Ordering, Distributing, Exposing, & Registering telephone Numbers non-WG discussion list" <modern.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/modern>, <mailto:modern-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/modern/>
List-Post: <mailto:modern@ietf.org>
List-Help: <mailto:modern-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/modern>, <mailto:modern-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Mar 2015 01:26:56 -0000

This is IDN all over again. On the one hand, we need to be aware that some bad people will try to ρηιςη instead of φισ, because the former looks like phish. On the other hand, last I looked, this is the IETF, and a US-centric or Roman-script-centric solution is not going to be internationally acceptable.

Sincerely,
柏尔立

P.S., while we are expanding the charter to encompass the ocean, can I specify “Eric Burger” for domestic calls and "柏尔立” for calls to China? ;-)


> On Mar 9, 2015, at 11:10 AM, Cullen Jennings <fluffy@cisco.com> wrote:
> 
> 
> On the particular CNAM like topic ...
> 
> I'm not keen on moving forward with something like this unless we can show the trust and human factors issues is an engineering problem not a research problem. We have seen the difficulty with human readable names in SPAM. Particularly when using UTF-8, how do we stop bad actor getting names that look the same as someone they wish to impersonate? Who will validate the names and issue some sort of trust token that says I can use "Cullen Jennings" or whatever. Who else can use that name and what about names visually similar to it.
> 
> On the flip side we are seeing most smart phones take the incoming phone number, and look it up the personal address book of the user and display the name that the user of the smartphone assigned. We are seeing enterprise phones that do a similar things using the users  social networks as well as personal address book.
> 
> What would be bad is phone display a display name that some how claimed to be trustable but was not. That would be worse that the current situation. Perhaps people have a good way to solve this in mind but I'm not seeing that that is.
> 
> Cullen (with my individual contribute hat on of course)
> 
> 
> 
>> On Feb 25, 2015, at 10:05 AM, Richard Shockey <richard@shockey.us> wrote:
>> 
>> 
>> Thanks Martin .. This is my very raw first cut at a charter. Its hopefully simple and straight forward.
>> 
>> Send me any edits etc.
>> 
>> *****
>> 
>> CNIT Charter [Calling Name Identity Trust]
>> 
>> WG Chairs TBD:
>> 
>> Calling Name Delivery [CNAM] is a string of up to 15 ASCII Characters of information associated with a specific E.164 calling party number in the Public Switched Telephone Network [PSTN].  In the PSTN this data is sent by the originating network only at the specific request of the terminating network via a SS7 Transaction Application Part [TCAP] response message.  In the Session Initiation Protocol [SIP] this information can be inserted into the FROM: part of the originating INVITE message or by other means.
>> 
>> As with the originating source telephone number, this data can be altered in transit creating a variety of malicious abuses similar to the ones identified by the IETF STIR working group.
>> 
>> The purpose of the CNIT working group will be to define a data structure, a new SIP header or repurpose an existing SIP header to carry an advanced form of CNAM as well as information from a STIR Validation Authority.  The purpose of this work is to present to the SIP called party trusted information from the calling party in order that the called party make a more reasoned and informed judgment on whether to accept the INVITE or not.
>> 
>> The working group will not invalidate any existing SIP mechanism for anonymous calling.
>> 
>> The working group will, to the best of its ability, reuse existing IETF protocols.
>> 
>> Full Internationalization of the Calling Name Identity Trust data object(s) is a requirement.
>> 
>> The working group will closely work with the IETF STIR working group
>> 
>> The working group will immediately liaison with 3GPP SA-1 in order to coordinate efforts.
>> 
>> The working group will coordinate with National Numbering Authorities and National Regulatory Authorities as needed.
>> 
>> The working group will deliver the flowing.
>> 
>> •	A problem statement and requirements detailing the current deployment environment and situations that motivate work on Calling Name Identity Trust.
>> •	Define either a new SIP header or document a repurpose of an SIP existing header for Calling Name Identify Trust data
>> •	Define a data model for the Calling Name Identity Trust object (s) which may include various forms of multimedia data
>> •	Deliver an analysis of privacy implications of the proposed Calling Name Identity Trust mechanism.
>> 
>> 
>> Milestones:
>> 
>> 
>> —
>> Richard Shockey
>> Shockey Consulting LLC
>> Chairman of the Board SIP Forum
>> www.shockey.us
>> www.sipforum.org
>> richard<at>shockey.us
>> Skype-Linkedin-Facebook rshockey101
>> PSTN +1 703-593-2683
>> 
>> 
>> From: "DOLLY, MARTIN C" <md3135@att.com>
>> Date: Tuesday, February 24, 2015 at 9:02 PM
>> To: Richard Shockey <richard@shockey.us>
>> Cc: "Holmes, David W [CTO]" <David.Holmes@sprint.com>, "dispatch@ietf.org" <dispatch@ietf.org>, "modern@ietf.org" <modern@ietf.org>, "Peterson, Jon" <jon.peterson@neustar.biz>
>> Subject: Re: [Modern] [dispatch] draft charter
>> 
>> I support Richard on this
>> 
>> Martin Dolly
>> Lead Member of Technical Staff
>> Core & Gov't/Regulatory Standards
>> AT&T Standards and
>> Industry Alliances
>> +1-609-903-3390
>> Sent from my iPhone
>> 
>> On Feb 24, 2015, at 6:36 PM, Richard Shockey <richard@shockey.us> wrote:
>> 
>>> 
>>> Excellent points David.
>>> 
>>> My concern here is charter overreach. I really want to keep CNAM+/CNIT out of this.  IMHO that is a very separate and highly focused effort to define both the modification of the SIP headers necessary to support some enhanced calling party identification and a very limited effort to define the object and or the STIR validation data.
>>> 
>>> I’m violently opposed to “end world hunger” WG’s.
>>> 
>>> If registries can be used fine but I certainly want to see how this can be accomplished in bi lateral agreements between consenting service providers and work with CUA vendors on how the data is displayed aka Apple, Samsung, Microsoft in the context of a formal liaison with 3GPP.  Certainly the relevance of CNAM+/CNIT in enterprise and residential access markets is important but we all know “Money is the answer what is the  question ..”
>>> 
>>> I’ve asked for time in Dispatch to look at the CNAM/CNIT issue and report on the JTF on NNI. As you well know we have made considerable progress.
>>> 
>>> Last week I gave a talk on this to a panel that included many of our friends among the national regulators.
>>> 
>>> http://apps.fcc.gov/ecfs/document/view?id=60001033217
>>> 
>>> 
>>> 
>>> From: "Holmes, David W [CTO]" <David.Holmes@sprint.com>
>>> Date: Tuesday, February 24, 2015 at 5:06 PM
>>> To: "Peterson, Jon" <jon.peterson@neustar.biz>, "modern@ietf.org" <modern@ietf.org>
>>> Subject: Re: [Modern] draft charter
>>> 
>>> Jon,
>>> 
>>> Thank you for the work in assembling this draft of the charter for MODERN.
>>> 
>>> We would like to suggest some minor clarifications to the bullets describing the deliverables, to align them with the statement regarding flexibility to support the needs of different regulatory regimes, & thus to ensure that if quoted alone they are not taken out of context; i.e. the group product will be the protocols to support the allocation etc. activities, & it would not attempt to define the allocation processes.  We also would like the charter to note the relevant work that has already been performed by both IETF & the ATIS/SIP Forum JTF, & incorporate that into the output from the MODERN WG as appropriate.  These changes/additions are have been added to your text inline below.
>>> 
>>> We are hoping that the MODERN session at IETF#92 will have remote access, to allow participation by those of us that cannot attend in person due to other commitments that week.
>>> 
>>> Regards,
>>> 
>>> David/Sprint
>>> ______________________________________________________________________________
>>> 
>>> From: Modern [mailto:modern-bounces@ietf.org] On Behalf Of Peterson, Jon
>>> Sent: Wednesday, February 11, 2015 9:19 AM
>>> To: modern@ietf.org
>>> Subject: [Modern] draft charter
>>> 
>>> 
>>> At the Dallas IETF meeting in March, we'd like to get together and talk about what a working group for MODERN might look like. As an initial input to the discussion, a few of us have put together a proposed charter. While the TeRQ work was positively evaluated in the DISPATCH process, we feel this is broader enough in scope to warrant its own BoF.
>>> 
>>> Comments are welcome, this is just a starting point.
>>> 
>>> ------
>>> 
>>> Modern charter text:
>>> 
>>> The MODERN working group will define a set of Internet-based mechanisms for the purposes of managing and resolving telephone numbers (TNs) in an IP environment.  Existing mechanisms for these purposes face obsolescence as the voice communications infrastructure evolves to IP technology and new applications for TNs become possible.  The traditional model of a TN having an association to a single service provider and a single application is breaking down.  Its use as a network locator is going away, but its use as an identifier for an individual or an organization will remain for some time. Devices, applications, and network tools increasingly need to manage TNs, including requesting and acquiring TN delegations from authorities.
>>> 
>>> The working group will define a framework for the roles and functions involved in managing and resolving TNs in an IP environment. This includes a protocol mechanism for acquiring TNs, which will provide an enrollment process for the individuals and entities that use and manage TNs. TNs may either be managed in a hierarchical tree, or in a distributed peer-to-peer architecture.  Privacy of the enrollment data and security of the resource will be primary considerations.
>>> 
>>> Additionally, the working group will deliver a protocol mechanism for resolving TNs which will allow entities such as service providers, devices, and applications to access data related to TNs, possibly including caller name data (CNAM).  Maintaining reliability, real time application performance, security and privacy are primary considerations.  The working group will take into consideration existing IETF work including ENUM, SPEERMINT, STIR, and DRINKS.
>>> 
>>> The work of this group is limited to specifying a solution for TNs and covers any service that can be addressed using a TN.  Expanding the work to other identifiers is out of scope.  Solutions and mechanisms created by the working group will be flexible enough to accommodate different policies, e.g., by different regulatory agencies.
>>> 
>>> The work group will deliver the following:
>>> 
>>> -          An architecture overview document that includes high level requirements and security/privacy considerationsbuilt on the work of IETF & the ATIS/SIP Forum JTF, that included:
>>> o   Call routing architecture
>>> o   Inter-carrier NNI
>>> o   Cryptographically-enabled Anti-spoofing (STIR)
>>> o   Enhanced Calling Name (CNIT/CNAM)
>>> -          A document describing the protocols to support enrollment processes for existing and new TNs including any modifications to metadata related to those TNs
>>> -          A document describing protocol mechanisms for accessing contact information associated with enrollments
>>> -          A document describing protocol mechanisms for resolving information related to TNs
>>> 
>>> -
>>> 
>>> 
>>> This e-mail may contain Sprint proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.
>>> _______________________________________________ Modern mailing list Modern@ietf.org https://www.ietf.org/mailman/listinfo/modern
>>> _______________________________________________
>>> dispatch mailing list
>>> dispatch@ietf.org
>>> https://www.ietf.org/mailman/listinfo/dispatch
>> _______________________________________________ Modern mailing list Modern@ietf.org https://www.ietf.org/mailman/listinfo/modern_______________________________________________
>> dispatch mailing list
>> dispatch@ietf.org
>> https://www.ietf.org/mailman/listinfo/dispatch
> 
> _______________________________________________
> Modern mailing list
> Modern@ietf.org
> https://www.ietf.org/mailman/listinfo/modern

v2.23.0 | Report a Bug | By Email